l i n u x - u s e r s - g r o u p - o f - d a v i s
Next Meeting:
July 7: Social gathering
Next Installfest:
Latest News:
Jun. 14: June LUGOD meeting cancelled
Page last updated:
2004 Jun 30 22:18

The following is an archive of a post made to our 'vox mailing list' by one of its subscribers.

Report this post as spam:

(Enter your email address)
Re: [vox] [OT] _Another_ IE exploit?
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [vox] [OT] _Another_ IE exploit?

Before these exploits, you should know there have been well over 30 MSIE
security holes that have either not been fixed, or deemed unworthy of
fixes by MS.

I know 2 people who have a total of 5 outstanding bugs/holes with MSIE
reported to MS, and they have received responses, but there are still no
fixes for these holes. (Most require the user to visit a website with
malicious code.)

Some of the reported 30+ holes may be duplicates as many of the people who
report these do not share the holes they find with each other.

Now, consider this... we have a number of hole is MSIE, and we are seeing
more exploits... We are far from seeing an end to this folks.

Bill Kendrick said:
> Man, how many is it in one week!?  It's not related to the others we've
> been
> chattering about, unless I'm totally asleep right now :^)
>   Security Group Warns Of Newly Discovered IE Flaw
>   http://www.informationweek.com/story/showArticle.jhtml?articleID=22103094
>     "Internet Explorer doesn't block malicious Web sites from
>     inserting 'arbitrary content' in an arbitrary frame in a browser
>     window, the Danish security firm says. Secunia says the malicious
>     content will appear as if it originated from a trusted site, which is
>     an attack commonly known as spoofing."
> -bill!
> bill@newbreedsoftware.com            "Quote me as saying I was
> mis-quoted."
> http://www.newbreedsoftware.com/
> New Breed Software
> _______________________________________________
> vox mailing list
> vox@lists.lugod.org
> http://lists.lugod.org/mailman/listinfo/vox

vox mailing list

LUGOD Group on LinkedIn
Sign up for LUGOD event announcements
Your email address:
LUGOD Group on Facebook
'Like' LUGOD on Facebook:

Hosting provided by:
Sunset Systems
Sunset Systems offers preconfigured Linux systems, remote system administration and custom software development.

LUGOD: Linux Users' Group of Davis
PO Box 2082, Davis, CA 95617
Contact Us

LUGOD is a 501(c)7 non-profit organization
based in Davis, California
and serving the Sacramento area.
"Linux" is a trademark of Linus Torvalds.

Sponsored in part by:
EDGE Tech Corp.
For donating some give-aways for our meetings.