Microsoft begins distributing Internet Explorer 9.01 update with critical security fixes

Microsoft begins distributing Internet Explorer 9.01 update with critical security fixes

Summary: Microsoft is addressing many of its latest IE security issues in one fell swoop, with the newly released IE 9.01, its June Cumulative Security Update.

SHARE:
38

June 14 was Patch Tuesday. And this time around, there were lots of Internet Explorer (IE) security vulnerabilities that were patched.

Microsoft is addressing many of these security issues in one fell swoop, with the newly released IE 9.01, its June Cumulative Security Update for Internet Explorer. This update is available, as of yesterday, via Windows Update, according to a new post on the IE blog.

The security fixes in this update address vulnerabilities that "could allow remote code execution if a user visits a malicious, specially crafted Web page using IE," the IE team said. This update is rated "Critical" for IE 6, 7, 8, and 9 on Windows clients, the Softies said. There are also a few non-security related fixes in the Cumulative Update that address issues like memory leaks and display issues.

Customers who have automatic updating turned on don't need to take any action; the June Cumulative update will be applied without their intervention. "We recommend that administrators, enterprise installations, and end users who want to install this security update manually, apply the update immediately using update management software or by checking for updates using the Microsoft Update service," Microsoft officials said.

Microsoft is in the midst of developing IE 10, the next version of its browser, and the one that is expected to be integrated into Windows 8. Microsoft delivered a first technology preview of IE 10 in April 2011. Officials said to expect regular test builds of IE 10 every three months or so, which means the next IE 10 test release should arrive by mid-July, if not before.

Topics: Browser, Microsoft, Security

About

Mary Jo has covered the tech industry for 30 years for a variety of publications and Web sites, and is a frequent guest on radio, TV and podcasts, speaking about all things Microsoft-related. She is the author of Microsoft 2.0: How Microsoft plans to stay relevant in the post-Gates era (John Wiley & Sons, 2008).

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

38 comments
Log in or register to join the discussion
  • Security

    So all Redmond's talk about IE9 being the safest ever was.....just talk? Who'd have thunk it?
    cpt_slog
    • RE: Microsoft begins distributing Internet Explorer 9.01 update with critical security fixes

      @cpt_slog@...

      Way to not know how security works.
      The one and only, Cylon Centurion
      • Friends Don't Let Friends IE

        @Cylon Centurion I know how security works, there will always be vulnerabilities but IE9 is just out and turns out to be as flawed as 8, 7, 6.... I prefer reality over Microsoft's PR. Remote code execution vulnerabilities are as bad as it gets. IE - Just don't risk it.
        cpt_slog
      • RE: Microsoft begins distributing Internet Explorer 9.01 update with critical security fixes

        @cpt_slog@...

        I'd hardly call it PR. It has been shown that IE9 is pretty damn secure compared with previous versions.
        The one and only, Cylon Centurion
      • Obviously you don't

        IE -is- the most secure.

        Them having to patch it doesn't mean anything. >_>;

        If you want insecure, try baseline Firefox.
        Michael Alan Goff
      • RE: Microsoft begins distributing Internet Explorer 9.01 update with critical security fixes

        I have to agree with cpt_slog: IE9 is just as flawed as IE8 and IE7 were, as all these IE browsers had constantly LESS vulnerabilities discovered, than Firefox or Chrome, which all get security holes fixed at least a dozen each time they get updated. Same now with IE9, which had it's first vulnerability discovered and fixed in 3 months, while Firefox and Chrome had at least a dozen vulnerabilites fixed in the same time period.
        ff2
      • Friends don't let enemies get away with lies

        [i]I'd hardly call it PR. It has been shown that IE9 is pretty damn secure compared with previous versions.[/i]

        No it's not. It's looks no different maintenance-wise then IE6 or the others do. With sandboxing, DEP, ASLR and other so-called 'security features', we should be having less patching, not the same or more.

        Now many of us realize that's was all just a load of PR bunk.
        blind obedience
    • RE: Microsoft begins distributing Internet Explorer 9.01 update with critical security fixes

      @cpt_slog@...

      Safari, Chrome and FF also release 'regular' security updates ... just sayin'
      noagenda
    • Yeah but read the fine print.....

      @cpt_slog@...
      "Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights." I don't know how many times I say this, that if people would stop running their machines under admin rights, probably 90% of the security issues in windows would vanish.

      And also the other browsers (Firefox, Chrome, Safari, Opera) have the same issues at some point or another.
      I do wish though that MS would handle the updating of IE similar to Chrome where the user has no idea it's being updated, and it gets updated as soon as the user closes the browser then reopens the browser. This would speed up the updating process and possibly not require rebooting the machine since it would be separate process than the rest of the updates that usually pertain to the OS.
      mikroland
    • RE: Microsoft begins distributing Internet Explorer 9.01 update with critical security fixes

      @cpt_slog@... I can say definitively that your sarcasm is utter nonsense. Let me explain... as a system admin, I've pushed out IE9 to ALL of my users over the past month. Previously, a week wouldn't go by that I could escape having to clean off somebody's computer from a rogue antimalware infection... not because I wasn't protecting the computers, not because they had admin rights, and not because they clicked a link but simply because they were searching for work-related items on Google. They clicked a legitimate looking link and got redirected and their profile hijacked.

      IE9 has put a complete and total stop to that. Because of the reputation-based .exe filtering, these infections can't run at all without jumping through leaps to bypass the blocks. IF (and obviously they have) Microsoft has found the usual security vulnerabilities then I'm glad they're releasing fixes.

      Besides, only Firefox 4 has a similar .exe rejection mechanism, and EVER browser gets security fixes. If you think otherwise, you're a fool.
      GoodThings2Life
    • RE: Microsoft begins distributing Internet Explorer 9.01 update with critical security fixes

      @cpt_slog@... Let's do a car analogy, since you seem a little obtuse. Car analogies are fun.<br><br>Car v 1.0 - turn the ignition, car explodes.<br>Car v 1.1 - make a left turn, wheels come off<br>Car v 2.0 - pretty good, but some corrosion might make break-line fail if you live in Cali and have a red car which makes a right turn while having left blinker on and a smoking grandmother in the back seat. Also, if you press the gas and the clutch at the same time, car explodes.<br>Car 2.1 - fixes car-exploding problem from v 2.0, but smoking grandmother problem not fixed. Car 2.1 proclaimed safest version ever.<br>Car 2.2 - fixes grandmother problem.<br><br>According to you, Car 2.1 was not the safest version ever. Are you dumb or just obtuse?
      terjeb
  • RE: Microsoft begins distributing Internet Explorer 9.01 update with critical security fixes

    I hope that this fixes the memory leak that I get regularly. IE9 works great for a while, but about every 3 or 4 days, especially after heavy use, it slows down dramatically, with a reboot required to restore IE9 performance.

    Here's hoping!
    jglopic
    • RE: Microsoft begins distributing Internet Explorer 9.01 update with critical security fixes

      @jglopic Alternatively, you can just turn off your computer at night.
      Aerowind
      • RE: Microsoft begins distributing Internet Explorer 9.01 update with critical security fixes

        @Aerowind a lot of people don't do that for various reasons.
        blind obedience
  • RE: Microsoft begins distributing Internet Explorer 9.01 update with critical security fixes

    IE 10 to be integrated into Windows 8? Isn't this what got Microsoft in trouble years ago because IE was an integrated part of the Windows fabric?

    Just saying...
    ITdudeMTL
    • RE: Microsoft begins distributing Internet Explorer 9.01 update with critical security fixes

      @ITdudeMTL yes, but Microsoft owned nearly a 97% desktop marketshare. That is now down to 93% with more competition from the mobile world. The antiturst agreement with the DoJ ended last month.
      frankwick
      • RE: Microsoft begins distributing Internet Explorer 9.01 update with critical security fixes

        @frankwick

        And now with the government off their backs, it back to sleazy old business as usual.
        blind obedience
  • IE 9 is just plain problems

    I'm not a big Microsoft hater but, after five various attempts at trying to get 9 to run and play nice on two different machines I have switched to Firefox.
    Alanaaa14
  • IE9 64bit will not play flash

    Microsoft really dropped its balls again. The company puts out a version of a browser that does not handle popular flash content. Duh..it does not even tell its customers so now we have major confusion when CNN video does not play, it will not let you install the 32 bit version that works on Win7 64bit. I shall continue not to use IE anything!!!
    rmacleod9
    • RE: Microsoft begins distributing Internet Explorer 9.01 update with critical security fixes

      @rmacleod@...

      Uh, hi, that's because Adobe has yet to make a 64 bit Flash player. Microsoft doesn't make Flash, Adobe does.
      The one and only, Cylon Centurion