IE Flaw Gives Hackers Access To User Files

snydeq writes "Microsoft warned that a flaw in IE gives attackers access to files stored on a PC under certain conditions. 'Our investigation so far has shown that if a user is using a version of Internet Explorer that is not running in Protected Mode an attacker may be able to access files with an already known filename and location,' Microsoft said in a security advisory. The vulnerability requires that an attacker knows the name of the file they want to access, according to the company."

Micro$oft

[hellraizer]

it really whips the user's ass :)

Re:I wonder...

[byrdfl3w]

Whew! Thanks! I deleted all my password.txt files before some nasty hacker got to me.
Now I gotta tell my friends about this! Hold on while I log..

Oh crap.

Only under certain circumstances.

[140Mandak262Jamuna]

There is nothing to see here folks, move on. The bug kicks in only under certain circumstances. The circumstances are apparently running a Windows system with Internet Explorer as the default browser. Come on, how many slashdotters do that?

Firefox Mode

[markalot]

I run IE in Firefox mode, so I think I'm protected. ;)

financial information vulnerable

[commodoresloat]

That part is easily guessed; "2009 Income Tax Returns" would be easy to guess as well.

Oh shit ... hackers can find out how broke I really am!!

I can see it coming....

[Asadullah+Ahmad]

If things keep going like this regarding Microsoft and clever words, pretty soon this will be on Slashdot:

"Microsoft has announced that it is investigating a vulnerability in IE where an attacker can gain access to customer's computer if they are connected to Internet. But as all versions of Windows do not have internet access by default, most users are not vulnerable"

.

Re:This is bad.

[Pastis]

1000 cookies! Fast way to a diet !