Home > Internet news > New flaw in Explorer discovered

New flaw in Explorer discovered

29 January 2004

Another security hole has been discovered in Internet Explorer, meaning that users could be opening files that appear safe but are in fact whatever the sender wants them to be, such as executables.

Experts have warned that it is only a matter of imagination in getting people to freely download what could be an extremely dangerous virus, such as the MyDoom worm wreaking havoc on the Internet at the moment.

Reportedly, the new hole found by security company Secunia could in fact be combined with a previously discovered flaw, creating even more problems, as that allowed fake address and status bars to be created.

A Microsoft representative told CNET News that it was investigating the report but was not currently aware of any exploits involving the supposed flaw and criticised security companies for publicising problems before software makers can effectively investigate and solve them.

Users could also be tricked by web sites, whereby a malicious sites owner could deliberately misidentify a file so that it appears secure. Therefore users could end up thinking they were visiting a site with safe files when in fact the opposite was true

A demonstration of the hole is currently displayed on the Secunia website and a bulletin of tips to avoid such sites and spoofs is on the Microsoft site.

Security experts have already criticised Microsoft for not acting on the previously discovered hole yet.

Although the hole was found in version 6 of IE, security companies are warning it could possibly be in earlier versions too.

Users are being advised to type URL addresses into the address bar themselves rather than clicking on hyperlinks and to save files to a folder and then look at them.

Apply for your free web assessment - get a complete health check and optimisation action plan from Weboptimiser, the experts.


Related news

Leading brand search engine marketing since 1996

Founded in 1996 as an SEO company, Weboptimiser is today one of the Internet marketing sector's best-known and most respected search engine optimisation (SEO) and pay per click (PPC) search engine marketing companies.

With a unique portfolio of brand-friendly services, including usability, contextual advertising and web analytics, a pioneering methodology that covers all 4 stages of interaction between a web site and its visitors, we make our clients sites faster, smarter, busier and more profitable.


Leading brand search engine marketing since 1996
ABOUT US | SERVICES | RESOURCES | CONTACT US | SITE MAP

An Adwords Qualified Search Marketing Company is an award given by Google to qualifying search marketing companies.

CEO of Weboptimiser, David White, is chair of the IAB Europe search taskforce

David White, CEO of Weboptimiser Group Ltd chairs the IAB Europe Search Taskforce and serves on the IAB UK Search Council, setting the standards for the industry.


Search Engine Marketing Jobs

Click here for Search engine marketing jobs and see what we could do for your career.