Wednesday, June 30, 2004
Yes, another one
So not only can Microsoft (apparently) not build a secure, safe Web browser, they don't even bother doing regression testing. Slick, guys. This is a particularly nasty one:
According to the latest bulletin, the vulnerability affects people who have multiple IE browsers open. Through one of the open browsers, hackers can change the content of another Web site without users ever knowing that it has been altered.So, for example, you have one IE window open to a site which is (knowingly or not) carrying the malicious code to exploit this vulnerability, and another window on Windows Update. The vulnerability makes it possible for the evil site to write new content onto the Windows Update window. Such as rewriting download links to point to infected or trojaned files.
Using this attack method, hackers could insert links into legitimate Web pages and direct people to malicious sites where they could solicit personal information such as bank account or credit card information. Because the link comes from a legitimate and trusted site, victims may not realize they have been redirected to a harmful site. Hackers could also insert links that would trick users into downloading malicious software.
Sponsored Links
Other Projects
Search
Recent Posts
- Pop-up program reads keystrokes, steals passwords
- C3P"O"-face
- No cause for alarm
- "Just say 'No' to IE": CERT
- F3ll0wsh1p of teh R1ng
- Orkut for Gmail, Gmail for Orkut
- Governor, fire your policy staff
- Freedom of choice... is what you want
- Helpful utility of the day
- Worst Commercials
Recent Comments
Archive
- 07/01/2003 - 08/01/2003
- 08/01/2003 - 09/01/2003
- 09/01/2003 - 10/01/2003
- 10/01/2003 - 11/01/2003
- 11/01/2003 - 12/01/2003
- 12/01/2003 - 01/01/2004
- 01/01/2004 - 02/01/2004
- 02/01/2004 - 03/01/2004
- 03/01/2004 - 04/01/2004
- 04/01/2004 - 05/01/2004
- 05/01/2004 - 06/01/2004
- 06/01/2004 - 07/01/2004
- 07/01/2004 - 08/01/2004
- 08/01/2004 - 09/01/2004
- 09/01/2004 - 10/01/2004
- 10/01/2004 - 11/01/2004
- 11/01/2004 - 12/01/2004
- 12/01/2004 - 01/01/2005
- 01/01/2005 - 02/01/2005
- 02/01/2005 - 03/01/2005
- 03/01/2005 - 04/01/2005
- 04/01/2005 - 05/01/2005
- 05/01/2005 - 06/01/2005
- 06/01/2005 - 07/01/2005
- 07/01/2005 - 08/01/2005
- 08/01/2005 - 09/01/2005
- 09/01/2005 - 10/01/2005
- 10/01/2005 - 11/01/2005
- 11/01/2005 - 12/01/2005
- 12/01/2005 - 01/01/2006
- 01/01/2006 - 02/01/2006
- 02/01/2006 - 03/01/2006
- 03/01/2006 - 04/01/2006
- 04/01/2006 - 05/01/2006
- 05/01/2006 - 06/01/2006
- 06/01/2006 - 07/01/2006
- 07/01/2006 - 08/01/2006
- 08/01/2006 - 09/01/2006
- 09/01/2006 - 10/01/2006
- 10/01/2006 - 11/01/2006
- 11/01/2006 - 12/01/2006
- 12/01/2006 - 01/01/2007
- 01/01/2007 - 02/01/2007
- 02/01/2007 - 03/01/2007
- 03/01/2007 - 04/01/2007
- 04/01/2007 - 05/01/2007
- 05/01/2007 - 06/01/2007
- 06/01/2007 - 07/01/2007
- 07/01/2007 - 08/01/2007
- 08/01/2007 - 09/01/2007
- 09/01/2007 - 10/01/2007
- 11/01/2007 - 12/01/2007
- 12/01/2007 - 01/01/2008
- 01/01/2008 - 02/01/2008
- 02/01/2008 - 03/01/2008
- 03/01/2008 - 04/01/2008
- 04/01/2008 - 05/01/2008
- 05/01/2008 - 06/01/2008
- 06/01/2008 - 07/01/2008
- 07/01/2008 - 08/01/2008
- 08/01/2008 - 09/01/2008
Affiliate Links
