[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [RT] Security Alert -- 6 new flaws in MS IE

To: <realtraders@xxxxxxxxxxxxxxx>
Subject: Re: [RT] Security Alert -- 6 new flaws in MS IE
From: "Kent Rollins" <kentr@xxxxxxxxxxxxxx>
Date: Wed, 13 Feb 2002 14:10:18 -0800
In-reply-to: <01C1B48D.A17592B0@xxxxxxx-a>

PureBytes Links

Trading Reference Links

Ugh.  Will they never get it?

Thanks

Kent

----- Original Message -----
From: "Mark Jurik" <mark@xxxxxxxxxxxx>
To: "'Omega List'" <Omega-list@xxxxxxxxxx>; "'Realtraders'"
<realtraders@xxxxxxxxxxxxxxx>
Sent: Wednesday, February 13, 2002 9:58 AM
Subject: [RT] Security Alert -- 6 new flaws in MS IE

MS released an advisory Security Bulletin regarding 6 new security
vulnerabilities discovered in Internet Explorer (IE) 5.01, 5.5 and 6.0.
With these vulnerabilities, a hacker can ...

... cause a buffer overflow in IE that would result in the execution of any
program he wished.

... read files on your computer without your permission, by using a
malformed HTML scripting function which allows a Web site to establish
contact with data files on a visiting system.

... mis-name files your are downloading, thereby trick you into downloading
trojan software.

... craft the HTML headers associated with a file to cause it to open with
any available application of his choosing. A harmless looking text file
could actually be an app that modifies your registry.

... add additional HTML code to a web page *after* IE has already scanned
the page for scripts. This allows scripts to run even if you specifically
disabled scripts from running.

... read any files on your system which are viewable in IE.

THE FIX
-------

To fix these issues as well as many past IE vulnerabilities, install
Microsoft's cumulative patch

http://www.microsoft.com/windows/ie/downloads/critical/q316059/default.asp

  [ URL is all on one line ]

- mark jurik

To unsubscribe from this group, send an email to:
realtraders-unsubscribe@xxxxxxxxxxxxxxx

Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/

------------------------ Yahoo! Groups Sponsor ---------------------~-->
Get your FREE credit report with a FREE CreditCheck
Monitoring Service trial
http://us.click.yahoo.com/ACHqaB/bQ8CAA/ySSFAA/zMEolB/TM
---------------------------------------------------------------------~->

To unsubscribe from this group, send an email to:
realtraders-unsubscribe@xxxxxxxxxxxxxxx

Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/

References:
- [RT] Security Alert -- 6 new flaws in MS IE
  - From: Mark Jurik

Prev by Date: Re: [RT] Security Alert -- 6 new flaws in MS IE
Next by Date: RE: [RT] An Open Letter to the Incoming IBM CEO About Single Stock Futures
Previous by thread: Re: [RT] Security Alert -- 6 new flaws in MS IE
Next by thread: [RT] An Open Letter to the Incoming IBM CEO About Single Stock Futures
Index(es):
- Date
- Thread