Slashdot Mirror


Extremely Critical IE6/SP2 Exploit Found

Spad writes "Secunia is reporting on three vulnerabilities in IE6 running on XP SP2. Any of these, in combination with an inappropriate behaviour where the ActiveX Data Object (ADO) model can write arbitrary files, can be exploited to compromise a user's system. Moreover, the vulnerability can be used to delete files from the user's system. Secunia says 'Solution: Use another product.'"

11 of 595 comments (clear)

  1. Test site by Dancin_Santa · · Score: 5, Funny

    They've also posted a test site.

    No, you click it first.

    1. Re:Test site by MarkRose · · Score: 5, Funny

      I click it but nothing happens. When are site designers going to learn there are other browsers besides IE? Don't they know that Firefox's market sharing is growing? Clueless idiots!

      --
      Be relentless!
    2. Re:Test site by Citizen+of+Earth · · Score: 5, Funny

      I know we all want to blame Microsoft for breaking compatibility, but face it, IE is the de facto standard.

      I think that the Firefox developers should give credit where its due. They should organize another pledge campaign to raise $10,000.00 to give to Microsoft as a token of good will for all of the advertising that Microsoft has done for Firefox. Although the actual advertising contribution of Microsoft is at least a thousand times greater, this would help coax Microsoft toward continuing their generous support and [this is the serious part] the press would eat it up, contributing another $5M worth of free advertising.

  2. But can it be used to... by FullCircle · · Score: 5, Funny

    delete IE?

    or maybe install Firefox?

    --
    If tyranny and oppression come to this land, it will be in the guise of fighting a foreign enemy. - James Madison
  3. Re:A worm that deletes everything. by eofpi · · Score: 4, Funny

    Well, there's always hoping for this to happen....

    --
    Y'know, you blow up one sun and suddenly everyone expects you to walk on water.
  4. Surfing with IE by The+Bringer · · Score: 5, Funny

    I have made my own little extreme sport out of it. I fill my old box with all of my financial information, and surf around using IE. I think Microsoft is pretty impressed, because they keep sending me boxes of Viagra and dog crap.

  5. Re:Heh by Anonymous Coward · · Score: 5, Funny

    Yeah, if your grandma hasn't spent at least $50 on third-party security software plus a yearly antivirus subscription fee, plus made sure to configure her firewall correctly and run virus and spyware scans weekly, plus made sure to create a restricted user account that she runs IE under, why then she has only herself to blame. Obviously Microsoft is doing everything in its power to protect her.

  6. Re:It fries Safari by coyotecult · · Score: 5, Funny

    Beachball of death is just so much more fun and sunny sounding than blue screen of death! MS should've reworked their PR on that one.

  7. Re:Delete files? by lachlan76 · · Score: 5, Funny

    Actually, I would have said it was more like "Today terrorists have announced that they have armed an atomic bomb in the middle of Los Angeles. If it goes off, it may burn you!"

  8. Re:BFD by Ghostgate · · Score: 5, Funny

    "Fool me once, shame on you. Fool me 621498 times, shame on me."

    GWB said that, right?

  9. Help me!! by Piranhaa · · Score: 5, Funny

    Hey can someone please tell me how I can find out where my windows is installed? It says here http://secunia.com/internet_explorer_command_execu tion_vulnerability_test that windows needs to be installed in c:\windows\ for their test exploit to work 'properly'

    Computer specs: iBook g3 800mhz...

    I hope that helps a little