Slashdot Mirror
Another Zero-Day IE Scripting Exploit
billstewart writes "A Computerworld Article reports a pair of vulnerabilities to Internet Explorer that allow Windows machines to be 0wned by a single click on a malicious web page. It was discovered by Dutch researcher Jelmer. As usual, the primary workaround is to disable Active Scripting for any sites that aren't Trusted, but you should have turned off that and Javascript years ago for safety anyway. At least one of the holes is fixed in XP Service Pack 2, but that doesn't fix previous versions of Windows and it's still only beta."
In other news, SCO is a bunch of Litigious Bastards.
IE's got holes, it's non-standards-compliant... but it's the standard out there folks. Sure, someday people my open their eyes and use a compliant browser someday, but I sit here on my lunch break, and I'm on IE.
I assert that my comment is only my opinion, not that of any employer, past, present or future.
Not sure that's quite an analogy you want to make to attack Microsoft. After all, Italian dressing tastes best when it's shaken up.
Pour it on your salad without shaking it up, when it's all nicely layered, and you'll have salad that is oily and flavorless. Kind of like Linux.
"Ask not what your country can do for you." --John F. Kennedy
This is no longer debatable, just dont use IE that is the only fix. Microsoft are idiots, i dont even want to think about all the other software we use daily (eg ATMs) that they have fucked up on. Can you imagine this in another industry?
This comment does not represent the views or opinions of the user.
Why Some Sites Only Work With IE
If you surf the web with a browser like Firefox, Netscape, or Opera, you've probably run into sites that either require Internet Explorer or look very poor in non-IE browsers.
I previously thought this was due to laziness on the part of web developers. Events of the past days have made me think something else may be at play.
I'm a software developer at a very large company. Recently, the company underwent a reorganization. I now work for a different business unit. To make a long story short, this business unit does not give employees permission to install software on their desktop computers. They don't just prohibit it, they flat out prevent it via Windows administrator settings.
This means I have to use the corporation's approved; web browser: Internet Explorer. And, it means I can't even install Firefox or Opera to test my web designs.
Luckily, the team I work with is pushing the corporate bureaucracy to give us more rights to our machines. But I wonder how many people go through that effort, or how many of them succeed? Can policies like this - where the web developer can't even test their site in a non-IE browser - explain why some sites don't work in other browsers?
Not much too it. Note that no examination of the page was made for booby traps of any kind. Also a number of "#8271" were removed. The text claims it was generated by word press. spacerook uses apache on linux and is a lunarpages site.
Friends don't help friends install M$ junk.
I thought open source was about choice. MS lets you change your default browser, you dont? Sounds like your more evil than bill
With stories like this, do you really have to ask?