Posted:
| ||
| IE Flaw Exploited. source: flexbeta.net | ||
| Security outfit Secunia has said it has come up with a way of using an unfixed flaw in IE that only requires a user to visit a site to become infected. The flaw, which works even under Windows XP SP2, have been known publicly for more than two months, but required the user to be really very dumb and drag an image from one part of a web page to another. However Secunia has demonstrated a fully automated version that requires the user only to visit a Web page in Explorer. It does not work with other browsers. As a short term fix, Vole has warned users to turn off IE's 'Drag and drop or copy and paste files' option as a partial solution. It is possible to avoid some problems by setting security levels to high for the 'Internet' zone or using another browser. The Secunia advisory can be found at the usual spot. |
Arjun
Web Series
