Attackers take aim at IE7 flaw

Microsoft is warning users to avoid suspicious websites and emails after attacks were reported on an unpatched flaw in Internet Explorer 7. The company would not provide exact figures, but said that a "limited number " of attacks had been reported. The attacks target a vulnerability in IE7's handling of the uniform resource indicator (URI) commands used by browsers to launch third-party applications.

Microsoft disclosed the vulnerability on 10 October, explaining that it arises when the browser fails to check malformed URI instructions in Windows XP and Server 2003. Windows Vista is not believed to be vulnerable. Security firm Secunia rated the vulnerability as 'highly critical', the fourth of its five severity levels

View: The full story @ vnunet

Report a problem with article
Previous Story

AMD confirms 19 November RV670 launch

Next Story

What's new in Leopard Server?

3 Comments - Add comment