| |
|

|
|

|
|
User Controls
|
|
New User
|
|
Login
|
|
Edit/View My Profile
|
|

|
|

|
|

|
|
Active Network
|
|
ActiveMac
|
|
ActiveWin
|
|
ActiveXbox
|
|
DirectX
|
|
Downloads
|
|
FAQs
|
|
Interviews
|
|
MS Games & Hardware
|
|
Reviews
|
|
Rocky Bytes
|
|
Support Center
|
|
TopTechTips
|
|
Windows 2000
|
|
Windows Me
|
|
Windows Server 2003
|
|
Windows Vista
|
|
Windows XP
|
|

|
|

|
|

|
|
News Centers
|
|
Windows/Microsoft
|
|
Apple/Mac
|
|
Xbox/Xbox 360
|
|
News Search
|
|
XML/RSS Newsfeeds
|
|
Pocket PC Site
|
|

|
|

|
|

|
|
FAQ's
|
|
Windows Vista
|
|
Windows 98/98 SE
|
|
Windows 2000
|
|
Windows Me
|
|
Windows Server 2003
|
|
Windows XP
|
|
Windows 7
|
|
Windows 8
|
|
Internet Explorer 6
|
|
Internet Explorer 5
|
|
Xbox 360
|
|
Xbox
|
|
DirectX
|
|
DVD's
|
|

|
|

|
|

|
|
Latest Reviews
|
|
Xbox/Games
|
|
Fable 2
|
|

|
|
Applications
|
|
Windows Server 2008 R2
|
|
Windows 7
|
|
Adobe CS5 Master Collection
|
|

|
|
Hardware
|
|
Microsoft Express Mouse
|
|

|
|

|
|

|
|
Latest Interviews
|
|
Mike Swanson
|
|

|
|

|
|

|
|
Site News/Info
|
|
About This Site
|
|
Advertise
|
|
Affiliates
|
|
Contact Us
|
|
Default Home Page
|
|
Link To Us
|


|
|
 |
|
 |
|
 |
| Time:
08:43 EST/13:43 GMT | News Source:
ComputerWorld |
Posted By: Chris Hedlund |
|
Microsoft late Wednesday confirmed that all versions of Internet Explorer (IE) contain a critical vulnerability that attackers can exploit by persuading users to visit a rigged Web site.
Although the company said it would patch the problem, it is not planning to rush out an emergency update.
"The issue does not currently meet the criteria for an out-of-band release," said Carlene Chmaj, a spokeswoman for the Microsoft Security Response Center (MSRC), in an entry on the center's blog. "However, we are monitoring the threat landscape very closely and if the situation changes, we will post updates."
|
| |
Read Only Comments
Return to News
|
|
Displaying Comments 1 through 15 of 15
|
|
This is an archived static copy of ActiveWin.com.
|
|
#1 By
15406 (209.87.228.158)
at
Thursday, December 23, 2010 09:58:43 AM
|
|
I don't know why these are even reported anymore. This week's critical IE bug is hardly news, just like last week's. Perhaps AW could make it easier on themselves and just have a cron job set to add a 'MS confirms critical IE hole" story once a week on a random day.
|
|
#3 By
445314 (173.71.200.71)
at
Thursday, December 23, 2010 08:04:49 PM
|
|
I see Latch is still posting the same old stuff about Windows security vulnerabilities. Hasn't it gotten old after ten years?
|
|
#4 By
445314 (173.71.200.71)
at
Thursday, December 23, 2010 08:05:48 PM
|
dupe
This post was edited by yamez75 on Thursday, December 23, 2010 at 20:06.
|
|
#5 By
15406 (209.87.228.158)
at
Friday, December 24, 2010 07:56:26 AM
|
#2: Oh I know. That's why I switched to Chrome a few months ago. But FF users could probably avoid most of those exploits with NoScript. Of course, no browser is perfectly safe, but I don't believe either FF or Chrome bend over as often as IE seems to.
#3: 4 posts in 10 years, and one of them was specifically to me? Wow... I feel so special.
|
|
#6 By
428624 (70.67.12.154)
at
Friday, December 24, 2010 09:33:02 AM
|
#5 Good move. Firefox is horribly insecure.
However the sad news is that Chrome's chron job will have to be run daily.
http://secunia.com/advisories/search/?search=google+chrome
This post was edited by A-NON on Friday, December 24, 2010 at 09:36.
|
|
#7 By
15406 (209.87.228.158)
at
Friday, December 24, 2010 10:44:06 AM
|
|
#6: Just curious, but are you one of those MS fanboys that seems to equate all vulnerabilities in your efforts to defend IE? I'd rather have 10 'read your cookie' flaws in Chrome than one 'own your box' hole in IE. Perhaps you didn't notice but from what I could see, most of those bugs are already fixed or are for older versions. Are you parkkker? He was famous for defending the latest IE gape by pointing out long-fixed FF bugs from yesteryear. And now you're doing the same thing. IE is so horrible that I don't know why anybody is still using it, but to defend it's craptacular security record is just fantasy and delusion that will convince no one.
|
|
#8 By
428624 (142.32.208.234)
at
Friday, December 24, 2010 11:27:52 AM
|
Latch, I was agreeing with you!
I wasn't defending IE at all.
I was just suggesting that people on this site get notified of ALL browser security issues, not just IE.
Why so defensive about your choice of Chrome?
Sure, they hide their vulnerabilities in big "Google Chrome Multiple Vulnerabilities" patchfests 2 or 3 times a month, but I think all browser consumers should be informed.
Don't you?
Sheesh, you are touchy even when people are agreeing with you.
|
|
#9 By
12071 (124.169.135.255)
at
Friday, December 24, 2010 06:50:32 PM
|
#8 "Sure, they hide their vulnerabilities in big "Google Chrome Multiple Vulnerabilities" patchfests 2 or 3 times a month, but I think all browser consumers should be informed."
Then you should also agree that Microsoft should start doing the same thing... I'm sure if they lead the initiative others would soon follow suit. After all they stuck 7 critical vulnerabilities into a single patch just this month, and that's not even close to a record for them: http://www.microsoft.com/technet/security/bulletin/MS10-090.mspx
|
|
#10 By
428624 (70.67.12.154)
at
Friday, December 24, 2010 06:57:54 PM
|
"Then you should also agree that Microsoft should start doing the same thing"
They have. The followed the Apple / Google lead and did a "multiple vulnerabilities patch".
However, you appear to misunderstand my post. My suggestion was that ActiveWin gives a much space to each Google Chrome and Firefox patch as they do to IE patches.
Do you disagree?
|
|
#11 By
445314 (173.71.200.71)
at
Friday, December 24, 2010 10:35:12 PM
|
|
@5 Original account was lost years ago. I got tired of of the flame wars amongst Parker and and you/kabuki. So I stopped posting/forgot password (purged?). Your initial response was the same crap you used to post. I would have hoped that after a long absense (my part) that you would have found a new line to post.
|
|
#12 By
2960 (72.205.26.164)
at
Saturday, December 25, 2010 01:34:59 PM
|
You can count the numbers, but it's reality that matters.
I service at least a dozen machines a week that are flat-out on their knee's due to Malware (99% of which are rogue AntiSpyware/AntiVirus Apps installed via drive-by), and 100% of them came in through IE. No email, no Firefox, no Chrome, no Opera. 100% IE.
FireFox may (or may not) have more holes, but they must be really, really tiny one's.
|
|
#13 By
241766 (99.241.211.171)
at
Sunday, December 26, 2010 03:41:47 PM
|
|
You could say that Firefox and Chrome have holes, but MSIE has wide open doors. Why try to squeeze through a hole when you can simply walk in the door Microsoft keeps open for you.
|
|
#14 By
445314 (173.71.200.71)
at
Sunday, December 26, 2010 05:52:33 PM
|
|
@13 I think you'd have to move Firefox to the IE column these days. It's security posture has gotten worse through every step of v3. Chrome is what everyone should be striving for (from a security POV)...
|
|
#15 By
428624 (70.67.12.154)
at
Sunday, December 26, 2010 10:22:07 PM
|
#12 You should replace yourself with someone who knows something about Windows PC's.
100% IE. No Flash? No Adobe Reader? No Java? No Quicktime?
You should know that those very common applications are among the most expolited.
|
|
|
 |
|