yet another IE hole

Discussion in 'other security issues & news' started by larryb52, Mar 26, 2006.

Thread Status:
Not open for further replies.
  1. larryb52

    larryb52 Registered Member

    Joined:
    Feb 16, 2006
    Posts:
    1,126
  2. TNT

    TNT Registered Member

    Joined:
    Sep 4, 2005
    Posts:
    948
    The article is way wrong... it's not true that "Internet Explorer users can expect a virus or worm in the very near future": the code is already out there and it's already being used by malicious sites, and by "hacked" sites (that are not hosted on malicious servers but were compromised and the malicious code was injected in them).

    So people don't think for a second that you're safe because you don't visit "dangerous sites" (a laughable statement if I ever heard one); the site golfingvacations.com (very probably because it was compromised) was using this exact exploit two days ago already, and it worked; now it's returned to normal (but I still wouldn't visit if I were you, who knows how well it was "patched").

    http://isc.sans.org/diary.php?date=2006-03-24

    http://isc.sans.org/diary.php?date=2006-03-26
     
    Last edited: Mar 26, 2006
Loading...
Thread Status:
Not open for further replies.