Thursday, October 19, 2006

IE 7 Vulnerability

That didn't take very long . . .

A vulnerability has been discovered in Internet Explorer, which can be exploited by malicious people to disclose potentially sensitive information.

The vulnerability is caused due to an error in the handling of redirections for URLs with the "mhtml:" URI handler. This can be exploited to access documents served from another web site."

Disable active scripting support.

Note, this same bug has been unplugged since April 2006 in your old IE6.x as well . . .

At least it's not another remote code vuln.

No comments:

Post a Comment

Comments are welcome but moderated to prevent spam links. I usually check them at least once a day in the evenings - so please be patient with me if your comment does not appear quickly.

Thank you.