New viruses exploit flaw in Windows Internet Explorer
Del.icio.us
Digg
Google
Spurl
Blink
Furl
Y! MyWeb
Share:
Sponsors:
By Erwin Lemuel Oliva
ANTI-VIRUS experts warned on Monday that viruses hidden in some websites were found to be exploiting anew certain flaws in Microsoft's Internet Explorer browser.
Experts at the United Kingdom-based SophosLabs said that certain malware (malicious software) hidden in websites can exploit an Internet Explorer security vulnerability not yet patched by Microsoft.
This Internet Explorer vulnerability allows hackers to run malware like a computer Trojan, virus or worm on a user's machine upon visiting websites infected by the malicious codes.he vulnerability affects Microsoft Internet Explorer running on Windows 98, Windows 98 Second Edition, Windows Millennium Edition, Windows 2000 Service Pack 4, Windows XP Service Pack 1, and Windows XP Service Pack 2, say SophosLabs experts.
"Microsoft will be fuming that the security of their software is being brought into question before they have had a chance to issue a security patch," said Graham Cluley, senior technology consultant at Sophos.
He added that Microsoft's next bundle of security patches is not due until December 13.
"It will be interesting to see if they decide to break the cycle and release a patch earlier in response to the increasing number of exploits," Cluley said.
Sophos has already issued a protection solution against the malware. One known as the Clunky-B Trojan horse allows hackers to gain remote access over an infected PC.
Cluley suggested that until a fix is available from Microsoft, computer users are advised to turn off Active Scripting or have Internet Explorer prompt them before running a script.
Article submitted by: Webshark
Last Update: 12-05-2005
Category: Security
ANTI-VIRUS experts warned on Monday that viruses hidden in some websites were found to be exploiting anew certain flaws in Microsoft's Internet Explorer browser.
Experts at the United Kingdom-based SophosLabs said that certain malware (malicious software) hidden in websites can exploit an Internet Explorer security vulnerability not yet patched by Microsoft.
This Internet Explorer vulnerability allows hackers to run malware like a computer Trojan, virus or worm on a user's machine upon visiting websites infected by the malicious codes.he vulnerability affects Microsoft Internet Explorer running on Windows 98, Windows 98 Second Edition, Windows Millennium Edition, Windows 2000 Service Pack 4, Windows XP Service Pack 1, and Windows XP Service Pack 2, say SophosLabs experts.
"Microsoft will be fuming that the security of their software is being brought into question before they have had a chance to issue a security patch," said Graham Cluley, senior technology consultant at Sophos.
He added that Microsoft's next bundle of security patches is not due until December 13.
"It will be interesting to see if they decide to break the cycle and release a patch earlier in response to the increasing number of exploits," Cluley said.
Sophos has already issued a protection solution against the malware. One known as the Clunky-B Trojan horse allows hackers to gain remote access over an infected PC.
Cluley suggested that until a fix is available from Microsoft, computer users are advised to turn off Active Scripting or have Internet Explorer prompt them before running a script.
Article submitted by: Webshark
Last Update: 12-05-2005
Category: Security
Current rating: 5.25 by 24 users
Would you recommend this article to a friend? |
Not a Chance | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | Absolutely |
Related News Stories
(9,459 reads) 07-05-2008
· Fusion Security(15,132 reads) 06-02-2007
· NukeSentinel(tm)2.5.10 Critical Update(13,896 reads) 05-07-2007
· NukeSentinel(tm) 2.5.08 Maintainance Release(15,362 reads) 03-15-2007
· NukeSentinel(tm) 2.5.07 Reissued: Critical Update(13,870 reads) 03-02-2007
· NukeSentinel(tm) 2.5.06: Critical Update(14,620 reads) 01-23-2007
· NukeSentinel(tm) 2.5.05 released(14,646 reads) 12-24-2006
· NukeSentinel 2.5.04 released(14,376 reads) 11-03-2006
· NukeSentinel(tm) 2.5.03 Released(18,213 reads) 10-19-2006
· Php Nuke 8.0 Patched(14,604 reads) 10-01-2006
· ipBan Modification
Please register or sign-in to post comments.