Serious security flaw found in IE

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View
Serious security flaw found in IE

Another note: Microsoft says it has detected attacks against IE 7.0 but
said the "underlying vulnerability" was present in all versions of the
browser.

Other browsers, such as Firefox, Opera, Chrome, Safari, are not
vulnerable to the flaw Microsoft has identified.

http://news.bbc.co.uk/2/hi/technology/7784908.stm

Exploit:JS/Agent.IHL is JavaScript, usually found on malicious or
compromised websites.

It is used to silently install malicious software onto the website
visitor's system. Guess Sun will will have another version of java
released very quickly if not sooner...

JR the postman

Re: Serious security flaw found in IE

says...
Quoted text here. Click to load it

A known exploit is one thing, but the real question is what does the
software company do about it. If you're Sun you get off your ass and
update it. If you're Microsoft well maybe someday. All software has
security flaws. The real issue is whether they remain unpatched.

--
James E. Morrow
 Email to: jamesemorrow@email.com

Re: Serious security flaw found in IE

James Morrow wrote:
Quoted text here. Click to load it


This is causing wide spread panic... MS seem to be doing everything they can
to burn their customer base.

Gaz



Re: Serious security flaw found in IE

Gaz wrote:
Quoted text here. Click to load it
http://www.pcworld.com/article/155585/Patch.html

Re: Serious security flaw found in IE

wrote:

Quoted text here. Click to load it
 
http://www.microsoft.com/technet/security/bulletin/MS08-078.mspx

Regards, Dave Hodgins

--
Change nomail.afraid.org to ody.ca to reply by email.
(nomail.afraid.org has been set up specifically for
use in usenet. Feel free to use it yourself.)

Re: Serious security flaw found in IE

On Wed, 17 Dec 2008 18:51:17 -0500, David W. Hodgins wrote:

Quoted text here. Click to load it

* * *
Dave,

www.windowssecrets.com/2008/12/17/02-Microsoft-patches-IE-but-Firefox-is-
still-safer

JR the postman

Re: Serious security flaw found in IE

Postman Delivers wrote:
Quoted text here. Click to load it

FF is no bed of roses.

<http://www.bit9.com/news-events/press-release-details.php?id=102

Re: Serious security flaw found in IE

Terry's Web Server wrote:
Quoted text here. Click to load it


A news release from a company that wants to sell you protection against
vulnerabilities is not exactly objective. Their claims may be true, but
I see that to find out more, so I can judge for myself, I have to
register. That always makes me suspicious. If their news is significant,
it should be available to anyone that wants it, no conditions.

--
Wolf Kirchmeir

Re: Serious security flaw found in IE


Quoted text here. Click to load it

If you're  refering to the Windows Secrets newsletter, you can
subscribe by paying whatever you consider the newsletter to be worth
to you. It's hard to find a more generous subscription policy. The
newsletter is terrific, including columns by Fred Langa, Ian "Gizmo"
Richards, and others.

Larry

Re: Serious security flaw found in IE

Larry Sabo wrote:
Quoted text here. Click to load it


I'm referring to Bit9. Guess I snipped too much. Apologies.

--
Wolf Kirchmeir

Re: Serious security flaw found in IE

Wolf Kirchmeir wrote:
Quoted text here. Click to load it

You can believe what you want, but if you think FF is some bed of roses,
then that's on you. I trust FF no more than I trust IE or any other
browser as long as human beings are involved in the development and
testing process.

Re: Serious security flaw found in IE

Terrys@Webserver.com says...
Quoted text here. Click to load it

Once again it is a question of how quickly the software companies
respond to vulnerabilities that matters. Microsoft's record in this
regard is appalling. Mozilla.org has a much better record of fixing
things that go wrong quickly.

--
James E. Morrow Email to jamesemorrow@email.com --

                MICROSOFT ERROR

A Microsoft Error has occurred. All user data will be irretrievably
lost. Your Windows configuration is invalid. Windows will now close.
Thank you for using Microsoft, THE POWER OF INNOVATION.

Re: Serious security flaw found in IE

James Morrow wrote:
Quoted text here. Click to load it

MS seems to have moved quickly on this one. And besides, the last threat
was not a threat for those who had IE set at its highest security level
and were using Vista, Win 2k3 server or Win 2k8 server.

Re: Serious security flaw found in IE

Terry's Web Server wrote:
[...]
Quoted text here. Click to load it

You're reading things into my post. I don't trust people who want to
sell me protective software, but insist I register in order to get the
data on which they base their claim that I need it. That's all.

As for the trustworthiness of FF vs IE, I trust FF somewhat more. Mostly
because about every 3rd Windows update there's a security patch for IE.
Does that prove that FF is secure. 'Course not. Only an idjit would
infer that. And only a discourteous idjit would impute such foolishness
to another poster.

Cheers,

--
Wolf Kirchmeir

Re: Serious security flaw found in IE


Quoted text here. Click to load it

I don't believe anyone said FF is a bed of roses, only that it offers a
bit more security than IE. Do you trust any software on your machine?


--
Regards,
Dustin Cook
Malware Researcher
MalwareBytes - http://www.malwarebytes.org
  


Re: Serious security flaw found in IE

Dustin Cook wrote:
Quoted text here. Click to load it


I do trust some software on my machine, and that would be the ones I
wrote as prototypes for business solutions for corporate customers.

Re: Serious security flaw found in IE

MBUnit <MB.Unit> wrote in

Quoted text here. Click to load it
Firefo
be
a

Then you trust the assembler, linker, and compilers? Or, did you write
those as well? How do you know the authors didn't put in a mickey?

I'm just screwing off for a moment, btw... These aren't serious questions
and shouldn't be taken seriously. I understand your point of view and the
other side of it.

Have a good day!


--
Regards,
Dustin Cook
Malware Researcher
MalwareBytes - http://www.malwarebytes.org
  


Re: Serious security flaw found in IE

Dustin Cook wrote:
Quoted text here. Click to load it

pfft

You need to be locked-up.

Re: Serious security flaw found in IE



[...]

Quoted text here. Click to load it

...a walk down memory lane -

http://www.derkeiler.com/Mailing-Lists/NT-Bugtraq/2002-02/0062.html



Re: Serious security flaw found in IE

FromTheRafters wrote:
Quoted text here. Click to load it

As long as there are human beings involved, nothing is bullet proof.

http://www.zdnetasia.com/insight/hardware/0,39043471,39102021,00.htm

Site Timeline