New Internet Explorer vulnerability discovered

Darren Allan

February 4, 2010

Microsoft’s web browser Internet Explorer hasn’t been having a great time of things lately.

Hot on the heels of the China-Google hacking furore, it seems another issue has raised its ugly head.

The new problem allows an attacker to access a file (or files) on a PC, providing they already know the name of the file and its location.

It affects those running IE on Windows XP, or those who have disabled Internet Explorer protected mode.

It’s not just IE6 this time, either, as it hits versions 7 and 8 of the browser on Windows XP systems.

For full details of the exact system configurations affected, check out the relevant Microsoft security advisory at: http://www.microsoft.com/technet/security/advisory/980088.mspx

Microsoft says it is unaware of any attempts to exploit this vulnerability, and it is currently investigating the flaw further.

A decision on whether to deploy an out-of-cycle update, or leave it until the next monthly security release, will then be made.

Meantime, more folks are probably thinking of hopping on the Firefox train, or other alternative browsers.






 

Post a comment

Your email address will not be published. Required fields are marked *

Visited 4165 times, 1 so far today