Jump to content
The Inquirer-Home
Communications > Security

Security boff finds holes in IE and Firefox

Zero-day bugs gnaw kidding
By Nick Farrell
Tuesday, 5 June 2007, 08:29
A BOFFIN specialising in security called Michael Zalewski has discovered four more zero-day vulnerabilities in Microsoft and Mozilla's browsers.

The most serious is an IE6 and IE7 flaw Zalewski said is "critical." IE gives hackers the ability to run malicious Javascript to hijack the PC. That's your PC, chum.

Up-to-date versions of IE6 and IE7 are at risk, although Firefox is not.

However Firebadger has a IFrame vulnerability in Firefox 2.0 can let attackers plant keyloggers or drop malicious content into a legitimate web site. It is similar to a flaw discovered last year which was patched. Zalewski claims that Mozilla hadn't plugged all the holes.

Zalewski posted information about two other bugs, both rated "medium." So far none of the holes seem to have been exploited.

More here. ยต

Share this:

< Previous article| Next article >
Comments

There are no comments submitted yet. Do you have an interesting opinion? Then be the first to post a comment.

Advertisement
Subscribe to the INQ Newsletter
Sign-up for the INQBot weekly newsletter
Click here to sign up Existing user
INQ Whitepapers

Business Intelligence Software

Customer Relationship Management (CRM)

Enterprise Accounting Software

Enterprise Resource Planning (ERP)

Enterprise Systems Management

Jobs
Powered by INQJOBS
Advertisement
INQ Poll

Christmas computer sales

Will you be buying a new computer this Christmas?

View other polls
Follow us:
Business & Technology websites:
Business research resources:
Products:
Investment Market IT websites:
Find out what you are worth:
Search for a job: