- May 3, 2011
- 3,893
- The patch was supposed to address flaws in Internet ExplorerMicrosoft rolled out six different security bulletins on Patch Tuesday to address a total of 29 vulnerabilities in its software, including some critical glitches in Internet Explorer, the company's in-house browser which is said to be used by more than 58 percent of the desktop computers worldwide.
It turns out that one of the patches released during this last rollout actually breaks down InstallShield 2011 through 2014 software, with Flexera, the company behind this app, confirming the issue in a public statement.
Microsoft hasn't yet provided a fix on this, but users who posted on the Community forums explained that KB2962872 appears to be at fault for startup crashes and a significant slowdown of InstallShield.
InfoWorld says that the problem could be caused by a bug in handling .HTM files, so uninstalling the update rolled out by Microsoft could indeed fix the problems.
“Moving the.htm files to a backup folder has been shown to reduce the impact of the issue for some InstallShield customers. Please note, that by taking these steps, the InstallShield Start Page and inline help will be limited and navigating to some views may still trigger a crash. Those using this method should save their projects frequently,” Flexera said in a statement.
According to Microsoft information, this particular security bulletin is supposed to fix flaws in all Internet Explorer versions, starting with 6 and ending with 11.
The company says that one publicly disclosed vulnerable and 23 privately-reported flaws in the browser are expected to be fixed by this patch, but no specifics have been provided on any compatibility issues that might occur following the installation of this bulletin.
“The most severe of these vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited these vulnerabilities could gain the same user rights as the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights,” Microsoft said.
At this point, no fully-working fix is available, so everybody is still waiting for Microsoft to release a patch that would allow them to deploy it without risking any software crash.
We've also reached out to Microsoft for more information on this, so we'll update the article when we receive an answer, hopefully with a working fix or timing details for a new patch.
Source
