PITTSBURGH ? US-CERT has issued another eSecurity warning this time regarding the multiple vulnerabilities in Microsoft Windows that could be exploited by malicious code referred to as Phel.
Systems Affected include Windows 98, Me, 2000, XP, and Server 2003;
Internet Explorer 5.x and 6.x; and other Windows programs that use MSHTML. Reports indicate that one of these vulnerabilities is being exploited by malicious code referred to as Phel.
US-CERT said an attacker may be able to take control of your computer by taking advantage of two different vulnerabilities in Internet
Explorer and Windows.
Those vulnerabilities include the way Internet Explorer processes
certain HTML code. There is also a vulnerability in the way
Microsoft Windows handles certain images. By exploiting either
vulnerability, an attacker may be able to take control of your
computer.
The problem can be resolved by applying an update as described in Microsoft Security Bulletins MS05-001 and MS05-002. Obtain the appropriate updates from Windows Update or by using Automatic Updates.
