Latest Version of MyDoom Exploits New IE Flaw

← Back to Stories (view on slashdot.org)

Latest Version of MyDoom Exploits New IE Flaw

Posted by michael on Tuesday November 9, 2004 @10:51AM from the zero-day-wormz dept.

techentin writes " CNN Money is reporting a new and improved MyDoom variant which is spread by a hyperlink in email. Clicking the link connects the user to an infected machine, which exploits a recently discovered buffer overflow in Internet Explorer. McAfee has a more detailed description. Is this yet another good reason for running Firefox?" CNET also has a story.

5 of 435 comments (clear)

Min score:

Reason:

Sort:

Better the losing side. by jbrelie · 2004-11-09 10:56 · Score: 5, Insightful

Let's not be hasty. True, I love Firefox, but IE is a giant honey pot out there for malicious attackers. If too many people switch, they'll start targeting Firefox. As much as I hate to admit it, they WILL find flaws to target.
1. Re:Better the losing side. by stefanlasiewski · 2004-11-09 11:12 · Score: 5, Insightful
  
  they WILL find flaws to target
  
  Sure, but will those flaws in Firefox as serious as the flaws in IE?
  
  It seems like when Microsoft attempted to integrate IE with the OS, IE was allowed access the OS in some very dangerous ways.
  
  For instance, why would earlier versions of IE write files to any directory without asking the User for permission?
  
  --
  "Can of worms? The can is open... the worms are everywhere."
Re:A good reason for using Firefox, or ... by chill · 2004-11-09 10:59 · Score: 5, Insightful

users could pull their heads out of their asses and stop clicking on links in SPAM.

Bzzzt, wrong answer.

Most viruses come from people you know, since they exploit the address book feature. Most spam comes from people you never heard of.

Thus, it is the links in the e-mail from people you KNOW, not spam, that is the problem.

--
Learning HOW to think is more important than learning WHAT to think.
Re:CNN Story by scribblej · 2004-11-09 11:00 · Score: 5, Insightful

"Lack of security issues?"

Okay, I'll grant you that FireFox is probably more secure than IE. But to say it lacks security issues is going a little further than I'd go, myself. In fact, I'd be willing to bet you $10 that it has security issues of it's own.

Don't sell your friend a dream. Set his expectations realistically. No software is bulletproof. No software lacks security issues.

Firefox f-ing rocks, no doubt about it. It blows IE out of the water. It probably has far fewer security holes. But to say it "lacks security issues" is naieve.

Don't believe everything you read on slashdot. A lot of these people have an agenda to meet.
Re:A good reason for using Firefox, or ... by aardvarkjoe · 2004-11-09 11:32 · Score: 5, Insightful

I don't usually get mail from people I know telling me that Paypal has charged my credit card.

--

How can we continue to believe in a just universe and freedom to eat crackers if we have no ale?