Serious security flaw found in IE

Source: BBC

Users of Microsoft's Internet Explorer are being urged by experts to switch to a rival until a serious security flaw has been fixed.

The flaw in Microsoft's Internet Explorer could allow criminals to take control of people's computers and steal their passwords, internet experts say.

Microsoft urged people to be vigilant while it investigated and prepared an emergency patch to resolve it.

Internet Explorer is used by the vast majority of the world's computer users.

Read more: http://newsvote.bbc.co.uk/mpapps/pagetools/print/news.bbc.co.uk/2/hi/technology/7784908.stm?ad=1

:rofl:

Firefox and Opera. FF has somes issues but they seem to stay on top of problems much better than IE.

patches of extremely critical flaws.

This is simply an overreaction to the situation. I would be willing to bet that if you're running on Vista with UAC enabled, you're not affected.

Guess not.

Firefox has a ~16% market share, while IE has a ~75% market share. Same reason OS X is less targeted than Windows.

Firefox will be absolutely perfect as soon as they make the Sarah Palin blocker plug-in available ;}

only thing we use IE for is to order labs, and that is because the lab's software won't work on Firefox. Maybe this flaw, which would enable crooks to latch onto medical records, will make the lab reconsider. (I work at a medical clinic.)

https://addons.mozilla.org/en-US/firefox/addon/1419

Check it out.

In a list, published by security firm Bit9, of 12 most vulnerable applications for the Windows platform, Firefox finished at the top of the list.

The browser has earned the reputation from Mozilla patching 10 vulnerabilities which could be used to gain control, access, or execute miscellaneous code via buffer overflow, malformed URI links, javascript, documents and third party tools.

The browser is well respected throughout its open source community. Users can download add-ons, themes and many other tweaks that users can be used to adjust, modify and tweak their browser for maximum performance and appearance.

http://www.neowin.net/news/main/08/12/16/firefox-tops-list-of-most-vulnerable-windows-applications

Have no fear, there is always:

http://www.opera.com/download/

But after a recent firefox upgrade, it started making my computer run at 100% usage. It's very frustrating. The only thing that cures it is to shut down firefox. ARGH!!!!!

Heard too many complaints.
running firefox with NoScript and WOT, and Adblock, seems to be working ok.
I also used Spybot for security checks, but NOT the real time feature, called Tea timer. THAT is a pain to use.
Back in Marc I opend IE for 10 minutes to something that seemed important at the time, got hijacked almost imediately, got the Cool Web Search virus and had to reformat hard drive.

If an app needs IE, tough luck.

And I went back to the previous version.

Firefox tops the most vulnerable applications on Windows.
http://blogs.zdnet.com/security/?p=2304

even with the IE tab on Firefox. I never store any passwords on any browser.

If you don't have Firefox on your PC, get it now. Check out the add ons. While its popularity is already making it a target of hackers, it seems to be a lot less like the Swiss cheese IE in vulnerability.

http://www.mozilla.com/en-US/

I use firefox primarily because of AdBlock... however, on sites that i regularly visit that have no ads to worry about, I use Chrome.

.....if you are reading this, I have already stolen your passwords to all your accounts, downloaded all your nekkid pictures, emptied your bank accounts, and ruined your credit! And, to show you just how effective this worm can be, I will have it all restored before you can log off and check it, and there will be no trail left, at all.


It's called the "wherethefuckdidmyshitgo" virus.

free and wonderful at

www.opera.com

:D

but just be aware that a lot of pages are funky on it.

If version 3.51 was eight years ago, then count me in as a fellow long-time Opera user :D

Everyone else copied from Opera :P

given how often it seems to happen. :banghead:

Yikes!!!!

Anyone with IE7 on Vista gets "Protected Mode" by default, which restricts access to critical processes and files, giving them Access Denied. Yet another reason to use Vista over XP. I can live with two or three UAC prompts a day for the benefits that it gives.

..........Do they mean "real" criminals other than Bush/Cheney?????

Remember the OLD slogan, "The quality goes in before the name goes on?"

Microsoft does it the other way -- releasing minimally tested crap for decades,
making users vulnerable to the effects. Forcing users to endure
'the 50 mb security download of the week.

Microsoft has always used its customers for "Beta Test."

No way to avoid it with current operating system sizes. You should see the size of updates that are required when patching a linux system sometimes.

It really doesn't come as any surprise at all. I recently had to re-format because of malware and viruses, it's amazing how infected your PC gets in very little time with IE. So I switched to firefox and don't use IE at all anymore. If Firefox starts having the same problem despite the add on/s I'll go with opera instead.

Really fast and absolutely no problems so far.

I've found a few irritations.

That was Pres. Caligula's advice to us right after 9/11.

:rofl:

Just goes to prove, yet again, why I say that Microsoft is the Bush administration of software.

What a shame!

AGAIN (or the first word: ANOTHER)

This isn't LBN. :p

Those guys are so funny....

I typed www.freerepublic.com into the address bar, and my screen filled with gibberish.

Microsoft is planning to release an out-of-band patch for Internet Explorer on Wednesday to address a critical security vulnerability that is being actively exploited.

The company on Saturday warned that 1 in 500 Internet Explorer users worldwide may have been exposed to malware hosted at both legitimate Web sites and porn sites that exploit an unpatched vulnerability.

Microsoft confirmed finding exploit code on a search engine in Taiwan and on a Web site in Hong Kong that serves adult entertainment content.

"Based on our stats, since the vulnerability has gone public, roughly 0.2% of users worldwide may have been exposed to websites containing exploits of this latest vulnerability," Microsoft Security Response Center researchers Ziv Mador and Tareq Saade said in a blog post. "That percentage may seem low, however it still means that a significant number of users have been affected. The trend for now is going upwards: We saw an increase of over 50% in the number of reports today compared to yesterday."

http://bink.nu/news/microsoft-issuing-emergency-patch-for-internet-explorer.aspx
--------------------------------------------------------------------------------------------------------------------------
Microsoft Security Bulletin Advance Notification for December 2008
Published: December 16, 2008

Microsoft Security Bulletin Advance Notification issued: December 16, 2008
Microsoft Security Bulletins to be issued: December 17, 2008

This is an advance notification of an out-of-band security bulletin that Microsoft is intending to release on December 17, 2008.

This bulletin advance notification will be replaced with the revised December bulletin summary on December 17, 2008. The revised bulletin summary will include the out-of-band security bulletin as well as the security bulletins already released on December 9, 2008.

http://www.microsoft.com/technet/security/Bulletin/MS08-dec.mspx