| ActiveMac | Anonymous | Create a User | Reviews | News | Forums | Advertise |
|
|
|
User Controls |
|
New User |
|
Login |
|
Edit/View My Profile |
|
|
|
|
|
|
|
ActiveMac |
|
Articles |
|
Forums |
|
Links |
|
News |
|
News Search |
|
Reviews |
|
|
|
|
|
|
|
News Centers |
|
Windows/Microsoft |
|
DVD |
|
ActiveHardware |
|
Xbox |
|
MaINTosh |
|
News Search |
|
|
|
|
|
|
|
ANet Chats |
|
The Lobby |
|
Special Events Room |
|
Developer's Lounge |
|
XBox Chat |
|
|
|
|
|
|
|
FAQ's |
|
Windows 98/98 SE |
|
Windows 2000 |
|
Windows Me |
|
Windows "Whistler" XP |
|
Windows CE |
|
Internet Explorer 6 |
|
Internet Explorer 5 |
|
Xbox |
|
DirectX |
|
DVD's |
|
|
|
|
|
|
|
TopTechTips |
|
Registry Tips |
|
Windows 95/98 |
|
Windows 2000 |
|
Internet Explorer 4 |
|
Internet Explorer 5 |
|
Windows NT Tips |
|
Program Tips |
|
Easter Eggs |
|
Hardware |
|
DVD |
|
|
|
|
|
|
|
Latest Reviews |
|
Applications |
|
Microsoft Windows XP Professional |
|
Norton SystemWorks 2002 |
|
|
|
Hardware |
|
Intel Personal Audio Player 3000 |
|
Microsoft Wireless IntelliMouse Explorer |
|
|
|
|
|
|
|
Site News/Info |
|
About This Site |
|
Affiliates |
|
ANet Forums |
|
Contact Us |
|
Default Home Page |
|
Link To Us |
|
Links |
|
Member Pages |
|
Site Search |
|
Awards |
|
|
|
|
|
|
|
Credits |
 |
Two New IE Bugs Uncovered | |
|
||
| Time: 00:08 EST/05:08 GMT | News Source: CRN | Posted By: Kenneth van Surksum | ||
|
Security analysts Wednesday warned users of a pair of unpatched bugs in Microsoft's popular Internet Explorer browser that may soon be in play because proof-of-concept code has gone public for both. One vulnerability lets attackers execute their code remotely if they can dupe users into double-clicking on a file included in a malicious Web page. The Internet Storm Center claimed that the current proof-of-concept exploit code requires this kind of user interaction, but that went on to warn that "we can expect to find creative use of this exploit in the wild very soon." According to the ISC, disabling IE's active scripting capabilities might protect against an exploit of the bug. The second flaw is due to a failure of IE to enforce cross-domain policies, Symantec said in a warning to customers of its DeepSight threat system. IE, which has been victimized by numerous cross-domain vulnerabilities, could be exploited to hijack usernames and passwords. | ||
|
Write Comment
Return to News |
Displaying 26 through 50 of 237 Prev | Last | Next |
The time now is
11:45:36 PM
ET.
Any comment problems? E-mail us |
| #26 By 12071 (203.206.253.53) at 7/1/2006 10:53:03 PM |
|
#30 The link you're referring to includes security advisories for ALL Mozilla Foundation products, not just Firefox. 3 of those advisories don't affect Firefox so that leaves us with 40 which can be broken down as such:
20 Critical 7 High 8 Moderate 5 Low all of which have been patched. Let's take a look at Secunia for 2006 as well and let's include the criticality as the raw numbers alone are mostly meaningless unless of course we're comparing sizes - unless of course you'd prefer 10 critical bugs to 100 low ones! <b>Product Vulnerabilities Unpatched</b> Firefox 7 (0,4,0,1,2) 2 (0,0,0,1,1) IE 12 (1,5,1,4,1) 5 (0,0,0,4,1) Opera 2 (0,1,0,0,1) 0 (0,0,0,0,0) so based on that we should all be using Opera! So aside from the raw number of vulnerabilities and their criticality the only other thing to look at is how long it takes a vendor to fix said bug. This sort of information, as you can imagine, is a lot more difficult to retrieve for closed source software as the vendors like to announce a vulnerability once they've had time to work on a fix, but eEye gives us a slight glimpse: Microsoft (AD20060509b - Low) - 210 days Microsoft (AD20060509a - High) - 210 days Microsoft (AD20060110 - High) - 163 days Microsoft (AD20051213 - Medium) - 204 days Microsoft (AD20051108b - High) - 224 days ... So Opera has the best security record, IE has the worst (along with a vendor that takes it's sweet ass time releasing patches) and Firefox is somewhere in the middle but with a very rich library of extensions, themes etc. |
| #27 By 32132 (64.180.219.241) at 7/2/2006 11:41:07 AM |
|
Kris, you know perfectly well we don't know how long most of those Firefox patches took to come about. You are being intellectualy dishonest to try and change the argument from # of bugs to lenght of time to patch them.
Almost all recently admitted to vulnerabilities in Firefox are now kept secret in Bugzilla. Some could be from the Netscape era. So I think wel'l have to go with the count of vulnerabilities. And by using 43, I was being generous. For example, http://www.mozilla.org/security/announce/2006/mfsa2006-31.html references 4 bugs in the Bugzilla database. All of which are kept secret (except for the bug # obviously). Firefox is buggy. Real buggy. And secretive about how old the bugs are too. This post was edited by NotParker on Sunday, July 02, 2006 at 11:42. |
| #28 By 311297 (109.160.131.222) at 9/8/2010 3:06:08 AM |
|
highly guys! after the latest untrammelled <a href=http://www.casinolasvegass.com>free online casino</a> games like roulette and slots !after distant like a sunny the all uncharted unburden <a href=http://www.casinolasvegass.com>online casino</a> games at the all redone www.casinolasvegass.com, the most trusted <a href=http://www.casinolasvegass.com>online casinos</a> on the entanglement! profit from our <a href=http://www.casinolasvegass.com/download.html>casino software</a> and take over from gauge ethical in money.
you can also constraint other <a href=http://sites.google.com/site/onlinecasinogames2010/>online casino</a> . you should also check this <a href=http://www.realcazinoz.com/fr>Casino en ligne</a>, <a href=http://www.realcazinoz.com/it>Casino Online</a> and <a href=http://www.realcazinoz.com/es>casino en linea</a> games. unify the the largest <a href=http://www.texasholdem-online-poker.com/>online poker</a> room. stub this revitalized <a href=http://www.realcazinoz.com/paypalcasino.htm>paypal casino</a>. <a href=http://www.ttittancasino.com>Online Casino Spiele</a> , accept <a href=http://www.web-house.co.il/acai-berry.htm>acai berry</a> . <a href=http://www.avi.vg/search2.php?a=sex4sexx&ser_pitch=enslavement+>bondage</a> <a href=http://www.thecasino.co.il/ilcasino.htm>casino</a> . <a href=http://en.gravatar.com/willinger18>online casino games</a> , <a href=http://www.web-house.co.il/buy-k2.htm>Buy k2</a> and recent <a href=http://casino-online.wikispaces.com/Online+Casino+Games>online casino</a> |
| #29 By 538715 (46.116.8.62) at 1/8/2012 11:37:22 AM |
| <a href=http://www.001casino.com>free pokies</a> <a href=http://www.casinovisa.com/how-to-play-online-roulette/>free casino</a> , <a href=http://www.concordiaresearch.com/games/roulette/index.html>casino bonus</a> , <a href=http://www.realcazinoz.com/casino_bonus>paypal casino</a> , <a href=http://www.avi.vg/category.php?a=sex4sexx&cid=3>sex shop</a> |
| #30 By 1213233 (91.237.249.57) at 8/30/2013 8:34:32 AM |
| top las vegas <a href=http://www.onlinecasinos.gd>casino bonus</a> casino games better then <a href=http://www.baywatchcasino.com>casino online</a> hotels. |
| #31 By 1213233 (91.236.75.77) at 9/13/2013 3:49:14 PM |
| top las vegas <a href=http://www.finlandinternetcasino.com/>free casino</a> casino games |
| #32 By 1263118 (109.186.34.48) at 10/4/2013 10:44:01 AM |
| Games available in most <a href=http://goo.gl/5AyoJG>casino</a>s are commonly called <a href=http://www.casinolasvegass.com>casino online</a>. In a casino game, the players gamble casino chips on various possible random outcomes or combinations of outcomes. Casino games are available in online casinos, where permitted by law.Casino games can also be played outside of casinos for entertainment purposes, some on machines that simulate gambling. |
| #33 By 1263118 (91.236.75.42) at 11/29/2013 10:45:07 AM |
| Games available in most <a href=http://www.swedenonlinecasino.com/>casino</a>s are commonly called <a href=http://www.bonusangel.com/>free casino</a>. In a casino game, the players gamble casino chips on various possible random outcomes or combinations of outcomes. Casino games are available in online casinos, where permitted by law.Casino games can also be played outside of casinos for entertainment purposes, some on machines that simulate gambling. |
| #34 By 1458860 (77.125.123.137) at 2/22/2014 3:06:43 AM |
| top <a href=http://www.realcazinoz.com>free casino bonus</a> games, and <a href=http://www.adults.gd/>sex toy</a> online |
|
Write Comment
Return to News |
Displaying 26 through 50 of 237 Prev | Last | Next |
The time now is
11:45:36 PM
ET.
Any comment problems? E-mail us |
