News
[PSUs]| Thursday 21st October 2004 |
New security holes identified for Internet Explorer post SP 2
3:59PM, Thursday 21st October 2004
Secunia has highlighted critical security holes on Internet Explorer on Windows computers that have already installed Service Pack 2.
The first hole occurs when a user drags an image or video file directly from within an HTML page displayed into the 'local' zone, by dropping it onto the desktop, for example.
The second can be exploited by embedding an HTML help control on to a page on a website that will cause an HTML page stored on the target machine to run.
Together the holes could allow an attacker to run any code on the system, and they have been tested on a Windows XP system updated with Service Pack 2 and running IE 6.
Secunia rates this as 'highly critical'.
Submit to: Digg | Slashdot | Del.icio.us | Technorati
