Why you should boycott Internet Explorer & most MS produ - Ferrari Life
 
LinkBack Thread Tools Display Modes
post #1 of 4 Old 07-08-2004, 10:57 PM Thread Starter
Administrator
Elite Member
 
Andrew's Avatar
 
Join Date: Nov 2001
Location: San Francisco
Ferrari Life Posts: 6,320
Why you should boycott Internet Explorer & most MS produ

SECURITY. If you are running Windows then you probably use Internet Explorer and Outlook Express. Guess what, your computer is NOT secure at all.

IE alternatives: www.netscape.com http://www.mozilla.org/products/firefox/ (recent flaw found but see below's article on IE). www.opera.com (wow, is their designer a member of FF? better fonts than here though--scray).

Vulnerabilities in IE have become so common that some security researchers are recommending that people adopt alternate browsers.

------------------------
A computer science researcher has highlighted the shortcomings of Microsoft's latest patch for its Internet Explorer browser by identifying another way that online vandals could run malicious programs on a Web surfer's computer.

Microsoft on Friday released a fix that's designed to protect computers from one of three flaws that, together, could be used to digitally slip past a PC's security through the browser. This weekend, however, a security researcher identified another flaw that could serve the same purpose and that isn't fixed by Microsoft's patch.

"They chose to address only one part of the problem," said Jelmer Kuperus, a computer science student in the Netherlands who posted the code for the work-around. "They should have seen this one coming."

This marks the third time in a month that Microsoft has had to play catch-up to researchers' public disclosures about insecurities in Internet Explorer. In early June, Kuperus found a Web site that used two previously unknown vulnerabilities, plus the recently patched one, to install adware on victims' computers. Additionally, security researchers discovered last week that a milder vulnerability, which Microsoft had fixed in early versions of the browser, reappeared in later versions.

Microsoft acknowledged the latest issue and said more fixes would be forthcoming.

"The company is working to provide a series of security updates to Internet Explorer in coming weeks that will provide additional protection for customers," a company representative told CNET News.com. The company will also "continue to actively investigate these reports."

The most recent flaw is not new--security researchers first discussed the issue in January, Kuperus said. It had originally been considered minor, but the flaw is significant because it can be used in conjunction with the two other vulnerabilities, which were found at the beginning of June. Together, all three add up to easy access to Windows computers running Internet Explorer.

"Most exploits we are seeing developed today are composed of multiple vulnerabilities, (each one) bypassing a specific security feature of Internet Explorer," Kuperus said. "Individually, many of these issues often are fairly harmless, but combined they can pose serious risk."

Both the original and the latest vulnerabilities exist in a library of components and scripting features known as ActiveX. The older flaw is in ADODB.Stream, while the latest vulnerability is in the Application.Shell component.

Vulnerabilities in IE have become so common that some security researchers are recommending that people adopt alternate browsers. The Computer Emergency Response Team, the official U.S. body responsible for defending against online threats, also advised security administrators to consider moving to a non-Microsoft browser, as one of six recommended responses.

Microsoft recommends that users go to the company's Protect Your PC site for the latest information.
Andrew is offline  
Sponsored Links
Advertisement
 
post #2 of 4 Old 07-09-2004, 08:44 AM
 
Join Date: May 2004
Ferrari Life Posts: 476
I run a fire-wall when I'm on line. Am I still safe?
senna21 is offline  
post #3 of 4 Old 07-09-2004, 10:49 AM Thread Starter
Administrator
Elite Member
 
Andrew's Avatar
 
Join Date: Nov 2001
Location: San Francisco
Ferrari Life Posts: 6,320
Quote:
Originally Posted by senna21
I run a fire-wall when I'm on line. Am I still safe?
Not from this stuff. A firewall will just blocks ports. But this flaw is in IE's coding with things like JavaScript and ActiveX. Visit a site running a JavaScript program and they will put a virus on your computer to get your passwords when you visit sites. That is what happened recently with a website out of Russia, visitors didn't even know it was happening.
Andrew is offline  
 
post #4 of 4 Old 07-09-2004, 05:08 PM
Owner
 
Join Date: Sep 2003
Ferrari Life Posts: 1,684
Is that why I'm getting increasing number of spams and junk mails?
Stradale is offline  
Reply

Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page
Display Modes
Linear Mode Linear Mode



Posting Rules  
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

 
For the best viewing experience please update your browser to Google Chrome
Copyright 2012 ONE Media, Inc.
FerrariLife is independently run with no affiliation with Ferrari SpA
Ferrari for Sale | Maserati for Sale