Several major measures to remedy the latest security vulnerabilities of IE

Recently, another serious security vulnerability has emerged in IE. Malicious users can use HTML email information or malicious web pages to control the computer system. The code that uses this vulnerability has been published on the Internet. Therefore, this vulnerability is currently highly risky.

When IE processes two attributes of the "frame" and "iframe" HTML elements, a buffer overflow may occur. The newly discovered IE vulnerability exploits this vulnerability. When you use an Internet Explorer version to access a malicious webpage or use software that relies on the WebBrowser ActiveX control, such as Outlook, Outlook Express, AOL, and Lotus Notes, to view HTML emails, may be attacked.

Currently, this vulnerability does not exist only when Windows XP SP2 is installed. If Windows XP SP1 and Windows 2000 are installed with all patches, its IE 6.0 browser still has this vulnerability. At present, Microsoft has not released any related security patches.

Suggestions for this vulnerability

1. If you are using Windows XP, install Windows XP SP2.
2. the system administrator can also disable active scripting to prevent unauthorized links.
3. Using plain text in an email can also reduce some risks.
4. Be cautious when browsing the Web page. Do not enter the unknown website at will. Once the IE browser is found to have no response, immediately terminate the IE process and disconnect the network to find problems.
5. Update the anti-virus software in time and enable the "Real-time Monitoring" function.

Specific Method for setting activity scripts in IE5.0 or IE6.0

First, determine the version of your IE browser. You can select About Internet Explorer from the Help menu ...) Item, a dialog box is displayed, showing the Browser IE information including the Browser IE version number.

Steps:

1. When you browse the Web page, start to open the Browser IE.

2. Select Internet Options... from the Tools menu ...) And then the Internet Options dialog box is displayed.

3. Select Security. The Security option appears.

4. Click the Internet area and select it.

5. Click Custom Level... (Custom Level...). The security setting box is displayed.

6. Select High level from the scroll menu.

7. Click Reset. A dialog box is displayed, asking if you are sure to change the security settings in the Internet region.

8. Click Yes. Next, follow the steps listed below and set the settings by sliding the settings menu.

9. When you set the Script ActiveX controls marked safe for Scripting (execute the Script for the ActiveX control marked as safe execution) item, you can choose to disable or prompt based on your trust level.

10. If you decide to disable Java, click Disable Java in Java permission settings. (Note: If you have installed Microsoft Virtual Machine (Microsoft Virtual Machine), this setting will be set in the Microsoft VM (Microsoft Virtual Machine) environment. If you do not set Java permissions, Java has been disabled .)

11. To set Active scripting under the script section, click Disable under the activity script.

12. Click OK. A dialog box is displayed, asking if you are sure to accept the change.

13. Click Yes ).

14. In the Internet Options dialog box, click the Advanced box. The Advanced option box appears.

15. In Security Settings, click Warn if changing between secure and insecure (issuing a warning when switching between Security and non-Security modes ).

16. Click Apply to keep your settings.

17. Click OK to close the Internet option dialog box.
Steps:

1. When you browse the Web page, start to open the Browser IE.

2. Select Internet Options... from the Tools menu ...) And then the Internet Options dialog box is displayed.

3. Select Security. The Security option appears.

4. Click the Internet area and select it.

5. Click Custom Level... (Custom Level...). The security setting box is displayed.

6. Select High level from the scroll menu.

7. Click Reset. A dialog box is displayed, asking if you are sure to change the security settings in the Internet region.

8. Click Yes. Next, follow the steps listed below and set the settings by sliding the settings menu.

9. When you set the Script ActiveX controls marked safe for Scripting (execute the Script for the ActiveX control marked as safe execution) item, you can choose to disable or prompt based on your trust level.

10. If you decide to disable Java, click Disable Java in Java permission settings. (Note: If you have installed Microsoft Virtual Machine (Microsoft Virtual Machine), this setting will be set in the Microsoft VM (Microsoft Virtual Machine) environment. If you do not set Java permissions, Java has been disabled .)

11. To set Active scripting under the script section, click Disable under the activity script.

12. Click OK. A dialog box is displayed, asking if you are sure to accept the change.

13. Click Yes ).

14. In the Internet Options dialog box, click the Advanced box. The Advanced option box appears.

15. In Security Settings, click Warn if changing between secure and insecure (issuing a warning when switching between Security and non-Security modes ).

16. Click Apply to keep your settings.

17. Click OK to close the Internet option dialog box.