ie flaw
RSS ie flawWindows at risk from fancy cursors
News The exposure to attacks that exploit the flaw is mitigated on Vista machines with Internet Explorer 7, Microsoft noted. IE 7 protected mode shields the computer against drive-by installations because the browser is restricted to where it can write... [30 Mar 2007]
Microsoft probing holes in Vista, IE 7
News The IE flaw could only be exploited if an attacker were to lure a victim to a malicious website and then persuade the user to enter the address of a trusted site into the address bar. Microsoft has promoted the security of both IE 7 and Windows Vista. [27 Feb 2007]
More flaws: Bugs hit Firefox, IE
News In addition, another Firefox flaw could let attackers change cookie files on the user's PC, he said. Microsoft confirmed the flaw could open up files stored on a PC's hard drive to an attacker but only if the location of a given file is already known. [19 Feb 2007]
Windows attack code made public
News The attack code exploits a flaw in the way Windows handles Vector Markup Language, or VML, documents, which are used for a type of high-quality graphic on the web. Microsoft provided a fix for the flaw last week with security bulletin MS07-004. [17 Jan 2007]
Yahoo! fixes errant update
News The previous software contains a security flaw that could cause other applications such as Microsoft's IE to crash, or prompt users to be involuntarily logged out, the spokeswoman said. The spokeswoman said Messenger should be compatible with IE 7... [18 Dec 2006]
Passwords at risk from Firefox, IE flaw
News Both the Mozilla Foundation's Firefox 2 and Microsoft's Internet Explorer 7 web browsers are vulnerable to a flaw that could allow attackers to steal passwords. Dubbed a Reverse Cross Site Request vulnerability (RCSR) by its discoverer Robert... [23 Nov 2006]
Windows worm holes plugged
News The IE update also addresses a new flaw, which lies in the way it handles certain HTML layout combinations, Microsoft said. The most urgent issue is a flaw in Microsoft's "Workstation Service" in Windows 2000 and Windows XP, said Amol Sarwate, a... [15 Nov 2006]
Mozilla rebuts Firefox 2.0 bug claims
News Another report on the Full Disclosure mailing list suggested there is a flaw in Firefox 2.0 that could be exploited to aid in cyber scams. Mozilla shipped Firefox 2 on Tuesday, nearly a week after Microsoft released IE 7. [26 Oct 2006]
Spoofing flaw unearthed in IE 7
News The spoofing issue, rated "less critical" by Secunia, appears to be the first genuine, publicly disclosed flaw in the new Microsoft browser. In addition, Microsoft chided the anonymous discloser of the flaw. [26 Oct 2006]
IE 7 'download frenzy' underway
News Security companies, including Secunia, had reported a flaw in IE 7. Web browsers, including IE 7, can be used as the vector in an attack that exploits the Outlook Express flaw, Budd wrote. There is a vulnerability but in Outlook Express, not IE... [20 Oct 2006]
Attacks still battering unpatched Windows flaws
News A flaw in Word has gone unpatched since early this month and a flaw in an IE ActiveX control called daxctle.ocx first surfaced on 14 September. Microsoft issued a rare, out-of-cycle Windows patch on Tuesday that fixed one flaw but attacks through... [28 Sep 2006]
Microsoft slaps quick fix on IE flaw
News The last time the software maker rushed out a fix was in January, when another image-related flaw in IE was being used to compromise Windows PCs through malicious websites. The company is breaking with its monthly patch cycle to fix a flaw that... [27 Sep 2006]
Redmond working "non-stop" on IE patch
News The flaw, first reported last week, is increasingly being used in attacks on IE users, security experts warned on Monday. In one example, cyber crooks have adapted a scam that uses e-cards to also take advantage of this latest IE flaw. [26 Sep 2006]
Security group issues emergency IE patch
News The flaw lies in the way IE 6 handles certain graphics. A group of security professionals has created a third-party fix for a recently discovered Internet Explorer flaw that's increasingly being used in cyber attacks. [25 Sep 2006]
Dodgy porn sites tap IE flaw
News This is the second known and unpatched flaw for IE to surface in as many weeks. Attack code that exploits the flaw and could be used to hijack Windows PCs running IE 5 or IE 6 has been posted on the net. [20 Sep 2006]
