Extremely Critical IE6/SP2 Exploit Found

Spad writes "Secunia is reporting on three vulnerabilities in IE6 running on XP SP2. Any of these, in combination with an inappropriate behaviour where the ActiveX Data Object (ADO) model can write arbitrary files, can be exploited to compromise a user's system. Moreover, the vulnerability can be used to delete files from the user's system. Secunia says 'Solution: Use another product.'"

Is anyone still using IE?

[Chromodromic]

Yeah, well, I guess corporate IT depts are probably struggling with mgmt to implement company-wide changeovers, especially for all those companies that are Microstooges and have big service and standardization contracts, yadda yadda yadda. But for all you individuals out there who aren't experiencing the Browsing Bliss that is Firefox, preferring IE to downloading a small file and doing a simple install, well, I don't pity you any more than anyone who walks into a dynamite factory and says, "Man, it's dark, anyone got a match?"

Re:Heh

[l3v1]

[...]they leaved it unpatched? Why?[...]

Questions, questions. Patching doesn't bring money fast you know, like buying up an antispyware company, giving away their/our software then charge for the updates.

Microsoft brains doesn't work like our humble ones. We seek logic, practicality, usability, security, they seek revenue. These don't always overlap.