Researchers say Microsoft introduced a new vulnerability for IE6 browsers running Service Pack 1. The vulnerability causes a heap-based buffer overflow, which lets an attacker on a malicious Website execute code with the browser user’s privileges. Microsoft says it will not be re-releasing the patch today after “an issue in final testing that impacts a customer’s ability to broadly deploy the update,” a Microsoft spokesperson says. The “long URL” reference was a technical detail that hadn’t been publicized by researchers.”]
Source: https://www.darkreading.com/analytics/ie-patch-created-new-vulnerability