-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hackers Use IE Bug to Taint Word Docs
,----[ Quote ]
| Attackers are exploiting the just-patched vulnerability in Internet Explorer
| (IE) by hiding malicious ActiveX controls in Microsoft Word documents, a
| security company said Thursday.
|
| "Inside the document is an ActiveX control, and in that control is a line
| that makes it call out to the site that's hosting the malware," said David
| Marcus, the director of security research and communications for McAfee
| Inc.'s Avert Labs. "This is a pretty insidious way to attack people, because
| it's invisible to the eye, the communication with the site."
`----
http://www.pcworld.com/article/155738/explorer_bug_word_docs.html?tk=rss_news
Recent:
IE zero day bites broader group of users
,----[ Quote ]
| Secunia goes on to revise what it says is the cause of the vulnerability.
| Contrary to earlier reports that pinned the blame on the way IE handles
| certain types of data that use the extensible markup language, or XML,
| format, the true cause is faulty data binding, meaning exploit code need not
| use XML.
`----
http://www.theregister.co.uk/2008/12/12/ie_zero_day_misconceptions/
Microsoft: IE5, IE6 Also Affected by Browser Vulnerability
,----[ Quote ]
| An unpatched vulnerability found in Internet Explorer 7 also affects older
| versions of the browser as well as the latest beta version, Microsoft warned
| Thursday.
|
| The new information widens the pool of users who could be at risk of
| inadvertently becoming infected with malicious software installed on their
| PC, as Microsoft does not yet have a patch ready.
|
| In an advisory updated on Thursday, Microsoft confirmed that IE 5.01 with
| Service Pack 4, IE6 with and without Service Pack 1 and IE8 Beta 2 on all
| versions of the Windows operating system are potentially vulnerable.
`----
http://www.pcworld.com/article/155397/.html?tk=rss_news
Internet Explorer balks at Firefox download link
,----[ Quote ]
| But on a clean installation of Windows XP (don’t ask; it’s a long story),
| Internet Explorer 6 claims there’s an error on the GetFirefox.com download
| page, and refuses to allow a click on the download button.
|
| A screenshot is the best I can do here, since I don’t really have any other
| way of proving it won’t work.
`----
http://kmandla.wordpress.com/2008/11/13/internet-explorer-balks-at-firefox-download-link/
Microsoft Defeats a Seven-Year-Old Bug
,----[ Quote ]
| Microsoft recently released two new patches, one of which fixes a security
| hole that the company has been trying to plug since 2001.
`----
http://www.pcworld.com/article/155436/microsoft_defeats_bug.html?tk=rss_news
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAklMRqEACgkQU4xAY3RXLo4c/QCgtKmr3bK/hx+KK7mldyXquTbe
sMsAnAlGong2ReRK8xDCDYMyfVCoaixy
=UDZI
-----END PGP SIGNATURE-----
|
|
