Slashdot Mirror

← Back to Stories (view on slashdot.org)

IE7 Bug Reports Flooding In

Posted by Zonk on from the experience-them-now-avoid-the-rush dept.

the JoshMeister writes "According to ZDNet, bug reports are already flooding in for Microsoft's new Internet Explorer 7 Beta 2 Preview. Specific issues include the possibility of arbitrary code execution as well as incompatibilities with McAfee Security Center, anti-spyware programs, and online banking sites." From the article: "... browser testers may already be at risk, according to security researcher Tom Ferris. Late Tuesday, Ferris released details of a potential security flaw in IE 7. An attacker could exploit the flaw by crafting a special Web page that could be used to crash the browser or gain complete control of a vulnerable system, Ferris said in an advisory on his Web site. Microsoft had no immediate comment on Ferris' alert."

5 of 259 comments (clear)

  1. Duh! by sparkydevil · · Score: 5, Insightful

    Of course it's got bugs -- it's a beta!

  2. This a good thing by Beelub · · Score: 5, Insightful
    Getting bug reports on beta software is good. That's why it's released as beta.

    Why is this front page, unless it's just the usual knee-jerk, let's-find-something-bad-to-say-about-Microsoft thing that makes Slashdot less than useful for info about anything about Microsoft.

    Yeesh.

  3. Story is inaccurate... by Manip · · Score: 5, Interesting

    Calling Tom Ferris a "Security Researcher" is like calling Bill Gates a programmer... He is more a 'Robert Scoble' character. And his discovery of arbitrary code execution is incorrect as per the link: http://blogs.msdn.com/ie/archive/2006/02/01/522682 .aspx

    The guy is not a professional anything, I mean he lists workarounds as 'Firefox'; which just shows how little he understands the security field which he claims to work in (A workaround should be a way to fix or bypass the bug, not a blind pointer at some random other product, even the Linux Security guys know that).

  4. More annoying than the bugs.. by chou+oishii · · Score: 5, Interesting

    ..are the way it: a) Requires you to validate windows to install, b) Requires a reboot, and c) Actually attempts to pass off things like tabbed browsing and a search bar as innovative (really, take a look at the "demo" they bring you to when you first install it).

    I'm not asking them to spend money advertising the fact that they're way behind the curve on browsers, just to stop lying to me.

  5. Treat IE 7 as IE 6? by Pascal+Sartoretti · · Score: 5, Interesting

    The problem for Microsoft is that many web applications use the following logic:

    if (browser is Internet Explorer) then

    emit HTML code that works around the numerous rendering bugs of IE

    else (Mozilla, Netscape, Opera)

    emit standards-compliant HTML code
    With this kind of (flawed) logic, IE 7 will often be identified as IE, and hence be provided with IE 6-specific HTML code, whereas it should have been sent "correct" HTML code. The result may be, well, interesting :-)

    I really don't see what Microsoft can do against this. They can't expect millions of web sites to be updated overnight just to support IE 7.