Slashdot Mirror

← Back to Stories (view on slashdot.org)

IE Flaw Exploit In Hacker Kit 'Raises the Stakes'

Posted by Soulskill on Monday November 8, 2010 @10:09AM from the calling-a-bluff dept.

CWmike writes "Roger Thompson, chief research officer of AVG Technologies, said Sunday that an exploit for the newest IE flaw had been added to the Eleonore crimeware attack kit. 'This raises the stakes considerably, as it means that anyone can buy the kit for a few hundred bucks, and they have a working zero-day,' Thompson said on his company's blog. Microsoft has promised to patch the vulnerability, but last week said the threat didn't warrant an 'out-of-band' update. Microsoft will deliver three security updates Nov. 9, but won't fix the IE bug then."

4 of 96 comments (clear)

Min score:

Reason:

Sort:

ie sucks by Anonymous Coward · 2010-11-08 10:14 · Score: 2, Funny

IE is such a poor piece of technology. Before I enter a serious relationship, in addition to a background check, I also investigate the browser my potential significant other is using. If it's IE, I don't even bother since I don't date dummies.
Re:Bug is really for Windows XP by benjamindees · 2010-11-08 10:39 · Score: 4, Funny

And it's even possible for a browser to alter the registry exactly why???
Broken Windows create jobs.

--
"I assumed blithely that there were no elves out there in the darkness"
Re:Bug is really for Windows XP by CarpetShark · 2010-11-08 11:00 · Score: 3, Funny

"Broken Windows create jobs."
I'm a window cleaner, you insensitive clod.
Re:Bug is really for Windows XP by RaymondKurzweil · 2010-11-08 17:46 · Score: 2, Funny

Fuck you... this is an issue of a fundamental freedom. An application as powerful and useful as a browser should have the right to alter an setting in the registry it wants!!