Friday, June 27, 2008
IT security researchers have warned that Microsoft's Internet Explorer (IE) 6 web browser may be at risk from a new unpatched vulnerability.
According to analysts, network security could be compromised if an exploit in the Adobe Flash program is used in conjunction with IE 6.
The problem relates to the way in which the browser handles the "location.href" property of a window object.
Because of an error in scripting, a malicious hacker could prepare a web page that, when visited, launches arbitrary code on the user's machine, potentially leaving enterprise network security at risk.
Companies are advised that IE 7 - the latest version of the browser - does not contain this vulnerability.
An IT security update from US-CERT cited by ZDNet noted that the exploit had the potential to allow remote attackers to perform a variety of actions including stealing authentication credentials and cookies as well as hijacking web sessions.
Related News:
Potential for more Twitter hacks - 1.7.2009
In the wake of some hackers gaining control of celebrity Twitter accounts, some security experts are expounding on the future of security breaches with the social networking site.
Significant increase in data breaches in 2008 - 1.7.2009
Despite more intelligent IT managers and security programs, there was a rise in data-loss incidents last year when compared to 2007.
Google one of the worst spam providers - 1.7.2009
Spamhaus has ranked Google as the third worst spam service provider, below the sites sistemnet.com.tr and hostfresh.com.
European police forces encouraged to hack? - 1.6.2009
In an effort to gain some ground on cybercriminals, it appears police forces all over Europe are being encouraged to "resort to remote searches" as another mode of surveillance, BBC News reports.
Online propaganda war escalates - 1.6.2009
More than 10,000 websites have been defaced or compromised by hackers in an effort to show their pro-Palestinian support during the ongoing Gaza Strip conflict.
