Home

Corker of an IE vulnerability

SEO Training.
Thread Title:
Extremely High-Level IE6 Vulnerability Found.
Thread Url:
http://www.jmcardle.com/?postid=77
Thread Description:
Check out this IE vulnerability allowing you to run commands on the victims PC
Some people have said their AV catches this, it worked on my machine even though I am running NAV

- Y! MyWeb

NAV

Norton Anti Virus?

Not being a windows guy im not familiar with the terms :)

Thanks Chris, nicely spotted..

So is there a patch for this yet?

By Nick W at Jan 10 2005 - 19:44

forget the patch

Ditch IE

It's never going to be anything but a liability! Apart from one of the worst browsers on the market!!! Why would anyone bother?

By richardb at Jan 10 2005 - 20:20

hehe..

Ditch the patch?

I ditched the whole shoddy OS 3yrs ago :)

By Nick W at Jan 10 2005 - 20:33

Unfortunately

The worlds corporate IT bods have not yet fully grasped how poo IE is (just check your own web server logs) .. expect lots of script kiddie exploits from this doing all sorts of nastyness that will cause the rest of us no end of troubles unless MS sort this out quicksmart :O(

By chrisgarrett at Jan 11 2005 - 10:00

just done it

finally done it!

bit wierd in FF, but it is cool

By ukgimp at Jan 11 2005 - 12:26

The M$ patch blocks AdSense

The microsoft patch sets security level to high

Quote:
Security level for the Internet zone is set to High. This setting disables scripts, ActiveX controls, Microsoft virtual machine (Microsoft VM), HTML content, and file downloads.

this, among other things blocks AdSense. Jenstar reports in this WMW thread

Quote:
I just tried it myself, and setting the Internet security setting to HIGH does block AdSense. It completely blocks it, and the space the ad would normally occupy vanishes.

By cornwall at Jan 11 2005 - 20:00

There is a patch on www.windowsupdate.com

There is now a patch available on www.windowsupdate.com now that will fix the hole. I just applied it and if fixes the problem.

By phpmaven at Jan 12 2005 - 04:33