-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Attacks Appear Imminent as IE Exploit Is Improved
,----[ Quote ]
| Hackers working on the open-source
| Metasploit project have spiffed up a zero-
| day attack on Microsoft's Internet
| Explorer, making it more reliable -- and
| more likely to be used by criminals.
|
| Security experts have been worried about
| the flaw since it was first disclosed on
| the Bugtraq mailing list Friday. But the
| original demonstration code was unreliable
| and has not been used in real-world
| attacks.
`----
http://www.pcworld.com/article/183190/attacks_appear_imminent_as_ie_exploit_is_improved.html
Microsoft IE exploit code unreliable, but more coming
http://www.networkworld.com/news/2009/112309-microsoft-ie-exploit-code.html?t51hb
Fixing the Internet Explorer Blues
,----[ Quote ]
| Earlier this week Microsoft announced yet
| another IE (Internet Explorer) bug. This
| one, Microsoft Security Advisory 977981, is
| one of the really bad ones that can allow
| attackers to take your Windows PC over.
| Yuck!
|
| [...]
|
| I think your best move to keep the world
| from sneaking in some malware over your
| browser is to get the latest versions of
| Firefox 3.5.5 or Google's Chrome 3.0.x Web
| browser. Neither is perfect, but they are
| better than IE. I wish I could recommend
| Opera, but I continue to have real concerns
| about Opera's built-in Web server security.
`----
http://www.itworld.com/security/86298/fixing-internet-explorer-blues
Microsoft Warns of IE Vulnerability
http://windowsitpro.com/mobile/pda/Article.cfm?ArticleID=103204&News=1
Microsoft Issues Security Advisory on IE Vulnerability
http://www.pcworld.com/article/182935/microsoft_issues_security_advisory_on_ie_vulnerability.html
Exploit code targets Internet Explorer zero-day display flaw
http://searchsecurity.techtarget.com/news/article/0,289142,sid14_gci1375179,00.html
New Security Flaw Hits Internet Explorer 6 & 7
http://techfragments.com/1104/new-security-flaw-hits-internet-explorer-6-7
New attack targets weakness in Internet Explorer
http://voices.washingtonpost.com/securityfix/2009/11/new_attack_targets_weakness_in.html
Microsoft Issues Internet Explorer Security Advisory
http://www.informationweek.com/news/security/vulnerabilities/showArticle.jhtml?articleID=221901038
Microsoft warns of IE exploit code in the wild
,----[ Quote ]
| Microsoft on Monday said it is
| investigating a possible vulnerability in
| Internet Explorer after exploit code that
| allegedly can be used to take control of
| computers, if they visit a Web site hosting
| the code, was posted to a security mailing
| list.
`----
http://news.cnet.com/8301-1009_3-10403756-83.html
Recent:
IE bug leaks private details from 50m PDF files
,----[ Quote ]
| A bug in Microsoft's Internet Explorer
| browser is causing more than 50 million
| files stored online to leak potentially
| sensitive information that could compromise
| user privacy, a security researcher said.
`----
http://www.theregister.co.uk/2009/11/23/internet_explorer_file_disclosure_bug/
Related:
,----[ Quote ]
| From: Bill Gates
| Sent: Saturday, December 05, 1998 9:44 AM
| To: Bob Muglia (Exchange); Jon DeVaan; Steven Sinofsky
| Cc: Paul Mariz
| Subject: Office rendering
|
| One thing we have got to change is our strategy -- allowing Office
| documents to be rendered very well by OTHER PEOPLES BROWSERS is one of the
| most destructive things we could do to the company.
|
| We have to stop putting any effort into this and make sure that Office
| documents very well depends on PROPRIETARY IE capabilities.
|
| Anything else is suicide for our platform. This is a case where Office has
| to to destroy Windows.
`----
http://antitrust.slated.org/www.iowaconsumercase.org/011607/2000/PX02991.pdf
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAksSgckACgkQU4xAY3RXLo698gCgiU6HAe5NNCxJyeoBaw9YZVvs
GxkAoJBSgB/vVp7vBKXn32eqZRqWWMcU
=vPLY
-----END PGP SIGNATURE-----
|
|
