Yet another IE remote hole

Discussion in 'other security issues & news' started by TNT, Apr 26, 2006.

Thread Status:
Not open for further replies.
  1. TNT

    TNT Registered Member

    Joined:
    Sep 4, 2005
    Posts:
    948
    http://secunia.com/advisories/19762
     
    Last edited by a moderator: Apr 26, 2006
  2. Antarctica

    Antarctica Registered Member

    Joined:
    Feb 25, 2003
    Posts:
    1,617
    Location:
    Canada
    Thanks TNT. IE is like a Swiss cheese. I like Swiss cheese but I'm using Firefox.:p :D
     
  3. crackman

    crackman Registered Member

    Joined:
    Jul 6, 2005
    Posts:
    24
    Location:
    Southern California
    Confirm: Yet another IE remote hole

    Fully-patched XP/SP2 with IE6 crashes on all four tests. One does not need to enable active content to cause the crashes; this is purely an HTML-rendering issue. Download and eyeball the four HTML files provided at the referenced site

    http://lists.grok.org.uk/pipermail/full-disclosure/2006-April/045422.html

    to see how simple the source files can be. Although there are no known exploits as of the time of this post, expect the black hats to be working on them.

    CrackMan
    XP/IE6/SP2
     
  4. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    8,038
    Location:
    The Netherlands
    Well, it´s obvious that there are probably a lot more serious holes in IE, FF and perhaps even Opera, the only thing we can do is harden our systems and hope that our anti malware tools will be able to stop the attacks. :rolleyes:
     
  5. TNT

    TNT Registered Member

    Joined:
    Sep 4, 2005
    Posts:
    948
    Yeah, they discovered yet another highly critical one :rolleyes: today (not the same listed above)... :thumbd:

    These browsers (and yes, IE especially) pose a constant threat to the system; yet the vendors keep ignoring all the critical bug history and they act as if none was ever discovered. It should be mandatory to sandbox these applications.
     
Loading...
Thread Status:
Not open for further replies.