Skip to comments.Secunia warns of flaws in IE
Posted on 01/08/2005 9:48:47 AM PST by holymoly
Disable Internet Explorer Active X support, turn off the "drag-and-drop" or "copy-and-paste files" option across a domain, or switch to another Web browser unless you want to face a Hack attack on your PC, warns the security firm Secunia. They have discovered three very critical flaws in the IE and have issued security notice on its website.
The company has rated the flaw as of a very high risk nature and has said that this is their last warning for people to secure their data. The flaw affects IE 6, and can enable hackers to run pornographic dialers to be dialed from the users computer without their knowledge said Thomas Kristensen, Secunia's chief technology officer. He said that only those flaws that can let someone manipulate users machine without users intervention get such high rating.
Even PCs with Microsoft's Service Pack 2 patch are vulnerable to be attacked.
The company has also said that Microsoft has been aware of this flaw for at least two months now but they have not yet come up with a security patch. The exploit code for one of the three vulnerabilities, a flaw in an HTML Help control, was already published on the Internet on Dec. 21.
Commenting on this Microsoft officials said that an incomplete patch can at times be worse than no patch at all. They want to thoroughly test the patch and it should be well engineered. This will take sometime
These flaws have made a big dent in Microsofts already battered image when it comes to security.
And now Bill and the Gang want to charge you for their own spyware/antivirus fixes!!! They want you to subscribe to their program so they can charge you to fix their vulnerabilities. Is this a great country or what?!
Disable Internet Explorer completely and use the Mozilla Firefox web browser.
I already have moved to Mozilla...What a difference!
Microsoft's corporate culture made viruses, spyware and viruses the phenomenon they are today.
I refer to the determination among managers and supposedly genius-level, supposedly "responsible" employees -- from the highest to the lowest -- to downplay and whitewash obvious problems in the evolving architecture. Their goal was to avoid saying anything that rocked the boat, in order to vest and cash out their stock options. That attitude influenced the company's judgment when developing IE and Active-X, and made today's situation possible.
Active-X should never have been let loose on the world in its present form; the "fixes" are small bandaids on a gaping security wound.
One of these days, AGs will grow balls and sue Microsoft for deliberately putting consumers at risk, by igoring obvious flaws in its products. The agreements that people must sign when installing a Microsoft product do not and should be allowed to exclupate Microsoft from deliberate negligence.
Correction: Microsoft's corporate culture made viruses, spyware and hacking the phenomena they are today
I pretty much have as well. Mozilla is far from perfect, (and still use IE for a couple of things), but the ad/popup blocking is worth its troubles.
"The nytimes.com domain is in my Trusted sites zone so that I can read The New York Times free every day (fantastic deal, I think). The free registration and cookie required to access the content at The New York Times web site are a modest "price" to pay for daily access to one of the world's great newspapers."
I do hope the information in this article from Eric L. Howes at the University of Illinois is better than the choices he makes in life. ;)
Pinging the techs.
Is firefox web browser free?
After reading this I did a quick check and found that I had one entry under my trusted sites: http://free.aol.com
I never put this under trusted. Did it get there from the IE sp2 etc...? Or it it there because AOL uses IE?
I don't have AOL as a provider.
I'm removing the entry now.
I'm not computer savvy, how does one disable IE? I do have Firefox downloaded, but it didn't seem to work as well with the accelerator on my ISP (earthlink). Any help appreciated!