Gifts Under $30 Gifts Under $50 iPhone Emergency SOS Saves Man MyHeritage 'Time Machine' Guardians of the Galaxy 3 Trailer White Bald Eagle Indiana Jones 5 Trailer Black Hole's 1,000 Trillion Suns
Want CNET to notify you of price drops and the latest stories?
No, thank you
Accept

Short Take: Patch available for IE "dotless" bug

Microsoft has posted a patch for a recently discovered security bug in its Internet Explorer browser. The IE "dotless" bug lets a malicious Web site operator use a form of IP address without dots to make the browser behave as though it has accessed a site within a local network, rather than on the public Internet. Users who have changed the intranet Security Zone from the default setting are at risk. The patch is posted to the Windows Update site for Windows 98 users, and the Microsoft security site for non-Windows 98 users.

Microsoft has posted a patch for a recently discovered security bug in its Internet Explorer browser. The IE "dotless" bug lets a malicious Web site operator use a form of IP address without dots to make the browser behave as though it has accessed a site within a local network, rather than on the public Internet. Users who have changed the intranet Security Zone from the default setting are at risk. The patch is posted to the Windows Update site for Windows 98 users, and the Microsoft security site for non-Windows 98 users.