Three new security vulnerabilities have been found in Internet Explorer 6, they could allow hackers to execute spyware and dialers.
The new security issues, discovered by Security Firm Secunia, even affect computers running Windows XP, even if Microsoft's Service Pack 2 has been used.
Ployer.com says, "Vulnerabilities in Secunia Advisory include - Insufficient validation of drag and drop task from the "Internet" zone to local resources. When this is not checked properly by IE a malicious website can plant arbitrary HTML documents on a user's system. Vulnerability two relates to IE's HTML help control; a specially crafted help (.hhk) file can execute malicious code ; this vulnerability can by-pass the "Local Computer" zone and lock down security features in SP2. Vulnerability three relates to a bug in the way IE handles the "Related Topics" command in an embedded HTML Help control, this can be exploited to allow the execution of malicious code."
Secunia has recommended that IE users disable Active X support to prevent a problem from occurring, until Microsoft has a patch for the problem.
Jeremy Muncy is a staff writer for WebProNews.com
Publish A Comment
-

What Makes a Quality URL?
In setting up a website, the URL is one of the most important... -

Getting Noticed with Google Maps
Are you utilizing Google Maps? If not, you could be hurting your... -

Gray Areas of FTC Guidelines
Although the FTC's new advertising guidelines are scheduled to go...
iEntry 10th Anniversary
RSS
Newsletter
Advertising




















