New viruses exploit flaw in Windows Internet Explorer


Del.icio.us  Digg  Google  Spurl  Blink  Furl  Y! MyWeb  
Share:
Sponsors:

By Erwin Lemuel Oliva

ANTI-VIRUS experts warned on Monday that viruses hidden in some websites were found to be exploiting anew certain flaws in Microsoft's Internet Explorer browser.

Experts at the United Kingdom-based SophosLabs said that certain malware (malicious software) hidden in websites can exploit an Internet Explorer security vulnerability not yet patched by Microsoft.

This Internet Explorer vulnerability allows hackers to run malware like a computer Trojan, virus or worm on a user's machine upon visiting websites infected by the malicious codes.he vulnerability affects Microsoft Internet Explorer running on Windows 98, Windows 98 Second Edition, Windows Millennium Edition, Windows 2000 Service Pack 4, Windows XP Service Pack 1, and Windows XP Service Pack 2, say SophosLabs experts.

"Microsoft will be fuming that the security of their software is being brought into question before they have had a chance to issue a security patch," said Graham Cluley, senior technology consultant at Sophos.

He added that Microsoft's next bundle of security patches is not due until December 13.

"It will be interesting to see if they decide to break the cycle and release a patch earlier in response to the increasing number of exploits," Cluley said.

Sophos has already issued a protection solution against the malware. One known as the Clunky-B Trojan horse allows hackers to gain remote access over an infected PC.

Cluley suggested that until a fix is available from Microsoft, computer users are advised to turn off Active Scripting or have Internet Explorer prompt them before running a script.

Article submitted by: Webshark
Last Update: 12-05-2005
Category: Security

Print | E-mail


Current rating: 5.25 by 24 users
Would you recommend this article to a friend?

Not a Chance 12345678910 Absolutely

Please register or sign-in to post comments.


Related News Stories

(9,413 reads) 07-05-2008
 · Fusion Security
(15,104 reads) 06-02-2007
 · NukeSentinel(tm)2.5.10 Critical Update
(13,860 reads) 05-07-2007
 · NukeSentinel(tm) 2.5.08 Maintainance Release
(15,334 reads) 03-15-2007
 · NukeSentinel(tm) 2.5.07 Reissued: Critical Update
(13,830 reads) 03-02-2007
 · NukeSentinel(tm) 2.5.06: Critical Update
(14,592 reads) 01-23-2007
 · NukeSentinel(tm) 2.5.05 released
(14,616 reads) 12-24-2006
 · NukeSentinel 2.5.04 released
(14,342 reads) 11-03-2006
 · NukeSentinel(tm) 2.5.03 Released
(18,181 reads) 10-19-2006
 · Php Nuke 8.0 Patched
(14,568 reads) 10-01-2006
 · ipBan Modification