Internet Explorer Zero-Day Exploit

  • Thread starter Thread starter dduardo
  • Start date Start date
  • Tags Tags
    Internet
AI Thread Summary
Internet Explorer (IE) users are facing a serious security threat due to a new zero-day exploit that can compromise systems without user intervention. This vulnerability affects even those using Windows XP Service Pack 2. Users are advised to be cautious about the websites they visit and consider disabling JavaScript in IE, although this may limit website functionality. Alternatively, switching to a different browser like Firefox or Opera is recommended. Concerns have been raised about Microsoft's lack of action on this issue, as they have been aware of the bug since May 31, 2005, and there have been no updates or fixes for IE since 2001, leading to frustration over the ongoing security risks associated with the browser.
dduardo
Staff Emeritus
Science Advisor
Insights Author
Messages
1,902
Reaction score
3
http://www.eweek.com/article2/0,1759,1891749,00.asp?kc=EWRSS03119TX1K0000594

IE users should be aware of the websites they visit. There is yet another zero-day exploit that doesn't require any user intervention and can take over your system. Here is the proof of concept:

http://www.computerterrorism.com/research/ie/poc.htm

and here is the advisory:

http://www.computerterrorism.com/research/ie/ct21-11-2005

Even users with Windows XP SP2 are affected.

Solution(s):

1) Disable javascript in IE - If you do this many websites won't work
2) Use an alternate browser (Firefox - www.mozilla.org[/url] , Opera - [url]www.opera.com[/URL])

The sad part is that Microsoft has known about this bug since 05/31/2005 and they haven't done anything about it.
 
Last edited by a moderator:
Physics news on Phys.org
How much are you willing to bet they haven't known about this before 5/31/2005?
 
Yes, it's possible Microsoft knew about it before that date, but May was the month that some 3rd party security researcher told Microsoft about it.
 
dduardo said:
The sad part is that Microsoft has known about this bug since 05/31/2005 and they haven't done anything about it.


Nothing new, there are dozens of bugs in IE that they flat out refuse to fix. Notice how there hasn't been a new version of it since 2001? And its a piece of crap.
 
Thanks for the heads up, dduardo!
 

Thread 'Predictions for the Nobel Prize in Physics 2025'

Similar to the 2024 thread, here I start the 2025 thread. As always it is getting increasingly difficult to predict, so I will make a list based on other article predictions. You can also leave your prediction here. Here are the predictions of 2024 that did not make it: Peter Shor, David Deutsch and all the rest of the quantum computing community (various sources) Pablo Jarrillo Herrero, Allan McDonald and Rafi Bistritzer for magic angle in twisted graphene (various sources) Christoph...
View full post »
Thread 'My experience as a hostage'

Thread 'My experience as a hostage'

I believe it was the summer of 2001 that I made a trip to Peru for my work. I was a private contractor doing automation engineering and programming for various companies, including Frito Lay. Frito had purchased a snack food plant near Lima, Peru, and sent me down to oversee the upgrades to the systems and the startup. Peru was still suffering the ills of a recent civil war and I knew it was dicey, but the money was too good to pass up. It was a long trip to Lima; about 14 hours of airtime...
View full post »

Similar threads

[Internet Explorer] Critical Warning
Replies
28
Views
4K

Hot Threads

Recent Insights

Back
Top