Zero-day flaw haunts Internet Explorer
June 26, 2008 (Thursday) | Internet Explorer
An unpatched cross-domain vulnerability in Microsoft's flagship Internet Explorer browser could expose Windows users to cookie hijacks and credentials theft attacks, according to a warning from security researchers. The zero-day flaw, which has been reported to Microsoft, is a variation of Eduardo Vela's IE Ghost Busters talk: Do you believe in ghosts? Imagine an invisible script that silently follows you while you surf, even after changing the URL 1,000 times and you are feeling completely safe. Now imagine that the ghost is able to see everything you do, including what you are surfing and what you are typing (passwords included), and even guess your next move. No downloading required, no user confirmation, no ActiveX. In other words: no strings attached....
» Read more on ZDNet BlogsRelated News
- An IE8 Beta 2 Q&A
August 28, 2008 (Thursday) | IE 8 - Internet Explorer 8 gets a massive makeover
August 28, 2008 (Thursday) | IE 8 - Microsoft reveals IE8 Beta 2
August 28, 2008 (Thursday) | IE 8 - Microsoft adds privacy tools to IE8
August 26, 2008 (Tuesday) | IE 8 - IE 8 looking like a November release
August 20, 2008 (Wednesday) | IE 8 - New IE 8 security tools: Not enough to stop the Firefox onslaught
July 16, 2008 (Wednesday) | IE 8 - Microsoft to ratchet IE8 security another notch in Beta 2
July 16, 2008 (Wednesday) | IE 8 - Could IE8 incompatibilities be a boon for Firefox?
June 12, 2008 (Thursday) | IE 8 - Gates promises IE8 Beta 2 in August
June 3, 2008 (Tuesday) | IE 8 - IE7 outperforms other XP and Leopard browsers in RIA tests
June 1, 2008 (Sunday) | IE 7 - Microsoft slates IE8 Beta 2 for next quarter
May 30, 2008 (Friday) | IE 8 - Enterprises pass on IE7, Windows Vista, Forrester says
April 1, 2008 (Tuesday) | IE 7 - IE8 balks at Windows Update
March 10, 2008 (Monday) | IE 8 - Opera: IE8's changes don't let Microsoft off legal hook
March 10, 2008 (Monday) | IE 8 - Image gallery: Internet Explorer 8 beta
March 10, 2008 (Monday) | IE 8