Slashdot Mirror

← Back to Stories (view on slashdot.org)

IE Flaw Utilizes Google Desktop Search

Posted by Zonk on from the i-knew-that-would-come-back-to-haunt-me dept.

abscondment writes "An error in the way Internet Explorer parses CSS files has been discovered by Matan Gillon of Israel. The flaw can be exploited by any website, and used to access personal information via Google's Desktop Search program. Of course, Google contends that this is a flaw with IE, and not their search software."

19 of 165 comments (clear)

  1. An error in the way IE parses CSS?!?! by Anonymous Coward · · Score: 5, Funny

    I am shocked to learn of this, shocked and dismayed.

  2. Nice submission troll by Gothmolly · · Score: 4, Funny

    Will this be the flaw that breaks the patch cycle's back?

    Puh-lease. This ridiculous question could be asked of any flaw. How about from the 'its 5pm lets leave early so we accept any sensationalist submission' department?

    I can see how the Slashbot must suffer over this - its Google, but its a security vulnerability, but its Microsoft, so its OK, but its still Google, so what do we do? Laugh, cry, sell stock?

    --
    I want to delete my account but Slashdot doesn't allow it.
    1. Re:Nice submission troll by MightyMartian · · Score: 4, Funny
      But I guess if you mention Google, it gets more attention? The summary could have just as easily said "vulnerability allows access to user's Hotmail email!!!!!!!!", which would be just as true, assuming the user is storing a cookie for easier access to hotmail.com.

      I think a better way to catch folks' attention would have been Vulnerability gives access to personal porn collection!

      --
      The world's burning. Moped Jesus spotted on I50. Details at 11.
    2. Re:Nice submission troll by Cl1mh4224rd · · Score: 4, Funny
      I think a better way to catch folks' attention would have been Vulnerability gives access to personal porn collection!

      This is Slashdot: "RIAA Uses IE Flaw to Scan Linux Systems for Open Source DRM Violations". ;o)
      --
      People will pass up steak once a week, for crap every day.
    3. Re:Nice submission troll by millennial · · Score: 1, Funny

      Oh SHIT. rm -rf /

      --
      I am scientifically inaccurate.
  3. The Quick Work-around by sammykrupa · · Score: 4, Funny

    Here is the easiest way to stop this from hurting you:

    Turn off your computer.

    P.S. Okay, seriously, use Firefox.

    --
    Dashboard Widgets
    1. Re:The Quick Work-around by ppz003 · · Score: 2, Funny

      Actually, I tell my friends and familily this all the time when they ask me how to keep from getting the nasties on their computers. The safest way to browse the internet? Unplug the ethernet cable or phone line. The most sure fire way to not get a computer virus? Turn the computer off.

      That's about when they ask me for browsing tips with a reasonable risk.

  4. Finally Happened by Nom+du+Keyboard · · Score: 3, Funny

    So it's finally happened. Microsoft's first salvo against Google. What else could it be?

    --
    "It's the height of ridiculousness to say for those 9 lines you get hundreds of millions."
  5. Misquote? by dada21 · · Score: 4, Funny

    This makes me wonder if Ballmer's chair throwing scream was actually "I will f##king end Google Desktop!" instead of "...end Google on the desktop."

    Hmm...

    1. Re:Misquote? by Dante+Shamest · · Score: 3, Funny

      It's kind of hard to scream "##".

  6. Wow! by drcarson · · Score: 2, Funny

    I wish I knew of this sooner

  7. Re:Hm.. Evil Empire vs Company making great produc by krakelohm · · Score: 5, Funny

    Who's who?

    --
    You are all a bunch of idots.
  8. In other news... by Spy+der+Mann · · Score: 2, Funny

    spyware gets access to your computer's resources. Doh.

  9. The bug is in Google's software by sycomonkey · · Score: 5, Funny

    The bug is that it uses IE in the first place.

    --
    --The universe will not be altered by forum threads, even those which are very wry. --Tycho Brahe (Penny Arcade)
  10. MOD PARENT STALKER by Anonymous Coward · · Score: 1, Funny

    You know where my house is?

  11. Dont worry guys by Izrath · · Score: 2, Funny

    After the next security update, all cookies created by IE will be prefixed with $sys$.

  12. RTFA - Its not a flaw! by nmoog · · Score: 4, Funny

    Its an awesome feature for Developers! Developers! Developers! - This feature has been in IE at least since IE 6 came out. That means Microsoft is again leading the field when it comes to AJAX and Web2.0 products.

    Think of the awesome client-side applications people will be able to come up with now that they are no longer restricted by pesky cross-domain security policies!

  13. Re:Hm.. Evil Empire vs Company making great produc by martin-boundary · · Score: 2, Funny

    Google's on first.

  14. Re:Can it, Jew by Old+Wolf · · Score: 2, Funny

    Is calling somebody a "jew" supposed to be an insult or something in your book? If ones calls a human a "human", or an american an "american", isn't this just simply stating the obvious? Calling a person who isn't a jew, a "jew", simply because they find anti-semitic comments offensive, would be an ignorant and silly thing to do. "Human", "american", "chinese" and "jew", neither of these are insults.

    Shut up, fag! And what's wrong with Chinese, are you racist?