Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

General discussion

[PivX] Comments on 5 IE vulnerabilities

Dec 1, 2003 8:57AM PST

PivX Security Update, Comments on 5 IE vulnerabilities

On November 25, Liu Die Yu published 5 new vulnerabilities in IE without notifying Microsoft in advance. It was further demonstrated how to use these vulnerabilities with 3 exploits designed to ease exploitation. These exploits are already being used in the wild.

Since then, PivX has reviewed and assessed those vulnerabilities and determined that Qwik-Fix 0.57 protects against all 3 exploits by significantly mitigating the impact of the 5 vulnerabilities. Users of Qwik-Fix 0.57 are completely protected against all command execution vulnerabilities in Internet Explorer, and were proactively protected against these exploits before they were ever known.

To upgrade from an older version of Qwik-Fix, please first uninstall your current version first (go to Start - Control Panel - Add/Remove Programs and click Remove below Qwik-Fix).
Qwik-Fix 0.57 can be downloaded from

http://www.pivx.com/qwikfix/download.html

If you would like to read our analysis of and comments on these 5 vulnerabilities and 3 exploits, you can find this at

http://www.pivx.com/larholm/list/pivx.12.1.ievulnsmitigation.txt

Discussion is locked