Internet Explorer Vulnerability Extremely Critical

richrf · #1 01-08-2005, 04:49 PM

GrannyMae · #2 01-08-2005, 09:16 PM

rich, will you copy+paste the contents of the link target here?

ty

EliteNinja · #3 01-08-2005, 09:21 PM

Yipes!
Good thing I'm still running Win98 SE!

CountDuckula · #4 01-08-2005, 09:45 PM

This is why I use Mozilla Firefox instead of IE. Yeah, I give up ActiveX (or "HacktiveX", as one of the responders put it!), but the risks greatly outweigh the benefits. The more people stop using Internet Exploder, the more pressure will fall on Micro$oft to fix their bug-ridden software.

-Mike

JGalt · #5 01-08-2005, 10:30 PM

IE Exploit Code Hits Net

Published: January 7, 2005, 1:50 PM PST
By Dawn Kawamoto
Staff Writer, CNET News.com

Three unpatched flaws in Internet Explorer now pose a higher danger, a security company warned after code to exploit one of the issues was published to the Internet.

Secunia said Friday it has raised its rating of the vulnerabilities in Microsoft's browser to "extremely critical," its highest rating. The flaws, which affect IE 6, could enable attackers to place and execute programs such as spyware and pornography dialers on victims' computers without their knowledge, said Thomas Kristensen, Secunia's chief technology officer.

Exploit code for one of the vulnerabilities, a flaw in an HTML Help control, was published on the Internet on Dec. 21 in an advisory by GreyHats Security Group.

"In order for us to rate a vulnerability as extremely critical, there has to be a working exploit out there and one that doesn't require user interaction," Kristensen said. "This is our highest rating and is the last warning for users to fix their systems."

The exploit code can be used to attack computers running Windows XP even if Microsoft's Service Pack 2 patch has been installed, Secunia said. The company is advising people to disable IE's Active X support as a preventative measure, until Microsoft develops a patch for the problem. It also suggests using another browser product.

rusty JEDI · #6 01-08-2005, 11:00 PM

What happens if you only use firefox, but you left IE on your computer?

Is there a way for this exploit to somehow still screw with you?

Thanks

rJ

BradleyT · #7 01-09-2005, 01:05 AM

No.

It's also nothing to worry about if you browse mainstream sites (use netscape for porn).

Slacker13 · #8 01-09-2005, 01:11 AM

[ QUOTE ]
It also suggests using another browser product

[/ QUOTE ]
Your crazy if your not already using firefox. it's a great browser.

Slacker13 · #9 01-09-2005, 01:13 AM

[ QUOTE ]

What happens if you only use firefox, but you left IE on your computer?

Is there a way for this exploit to somehow still screw with you?

[/ QUOTE ]

No, only if run a combination of IE and windows XP. When the browser is not running your fine.