Microsoft Corp. on Tuesday released a fix for the underlying code execution vulnerability affecting users of its flagship Internet Explorer browser.

As part of its monthly patching cycle, Microsoft shipped three security bulletins, all rated critical, including patches for a bug in the JView Profiler (Javaprxy.dll) that was being exploited via the IE browser.

The July batch of patches also includes fixes for serious hole in the widely deployed Microsoft Word desktop productivity program and the color management module in the Windows operating system.

The JView Profiler fix, addressed in MS05-037, sets the killbit for the Javaprxy.dll COM object to prevent a malicious hacker from exploiting the vulnerability.

The flaw was first discovered and reported in late June, and Microsoft had previously released a downloadable killbit package to disable the affected control.

Click here to read more the code...