:: Personal website of a Toronto web designer
Lately » Internet Explorer security flaw
An Internet Explorer security flaw discovered by eEye Digital Security is a pretty scary story for IE/Win users and one more reason for me to consider using Mozilla as my default browser.This is a flaw in Microsoft's primary contribution to HTML, the Object tag, which is used to embed basically all ActiveX into HTML pages. The parameter that specifies the remote location of data for objects is not checked to validate the nature of the file being loaded, and therefore trojan executables may be run from within a webpage as silently and as easily as Internet Explorer parses image files or any other "safe" HTML content.
Heise security has put up a demo page (it is harmless, but don't blame me if you clicked), which checks your IE browser for this vulnerability. The demo page is on German, which you might not understand, but all that matters is a red pop-up that says, "Sie sind verwundbar". If you get one of those, well, then "You are vulnerable". In that case, you will also find a program called "browsercheck.exe" on your C: drive executed without your interaction. As said, the demo page and browsercheck.exe are harmless, but visiting a malicious website could be very risky. I must admit, my browser didn't pass the test, despite my recent windows updates.
:: Sasha, at 10:40 pm on Thursday, 18. September 2003
http://texturizer.net/firebird/
http://www.mozilla.org/products/firebird/
The fastest browser on earth!
:: Davor, at 08:08 am on Friday, 19. September 2003
I had it installed, like most of the browsers, but haven't used it very often. That'll probably change in the near future. I am typing this using Firebird :-)
:: Sasha, at 02:02 pm on Friday, 19. September 2003
Useless scrawling facts:
Top 5 scrawlers:
(updated once a day)
556 Sasha
488 zoka
316 vitez-koja
235 Davor
58 mungos
