iTWire - Secunia refutes Microsoft IE7 flaw claims

IT&T JOBS|Discussion forum|Technology Events|IT Education|

Today on iTWire IT News Telecommunications People Our Blogs Tech Lifestyle Releases Science Sustainability MyProfile Whitepapers

Daily ICT Newsletter FREE TRIAL

Follow the Australian Telecommunications scene NEWSLETTER- FREE TRIAL

Technology news and Jobs

Information Technology News

Secunia refutes Microsoft IE7 flaw claims

Secunia refutes Microsoft IE7 flaw claims

E-mail

by Stan Beer
Friday, 20 October 2006
Page 1 of 2 Danish security vendor Secunia has hit back at Microsoft's claims that details of the newly discovered flaw in Internet Explorer 7 are innacurate, saying that IE7 is the primary and possibly the only attack vector through which the flaw can be exploited. Featured Whitepaper 5 Best Practices for Smartphone Support According to a Secunia advisory, if a user visits multiple websites using IE7, if one of them happens to a malicious site exploiting the flaw, attackers can gain access any information entered on other sites, such as user names and passwords. In response to the recent Secunia announcement of the IE7 flaw, Microsoft claimed the IE7 vulnerability is in fact an Outlook Express vulnerability. However, in an email to iTWire, the chief technology officer of Secunia Thomas Kristensen disputed Microsoft's assertion that Outlook Express rather than IE7 was the problem. "This may be true - from an organisational point of view within Microsoft. However, the vulnerability is fully exploitable via IE, which is the primary attack vector, if not the only attack vector," said Kristensen. "Just because a vulnerability stems from an underlying component does not relieve IE or any other piece of software from responsibility when it provides a clear direct vector to the vulnerable component." << First page < 1 2 Next page > Last page - Post your comment >>

< Next story in category		Previous story in the category >

Sponsored Releases

Heathrow Airport Terminal 5 Live with Progress Software

Open Text Deepens Integration with SAP® Solutions

As Christmas Nears, AVG (AU/NZ) Advises Shoppers How to Stay Safe Online

Progress Software Successfully Enables SaaS Deployment in the Cloud for Fifth Year

...Promote your press-releases here

Latest jobs

Applications Project Manager (.Net) (Q2)
SharePoint Migration Specialist (Q2)
Multiple Project Managers ? Generalist Skills (Q2)
SharePoint Migration Specialist (Q2)
Project Administrator
Midrange Team Leader
Solution Architect
Project Administrator
Midrange Team Leader
Solution Architect

	Visitors last 30 days	694,279
	Subscribers	15,210

#1 independent technology news advertise here

- Advertisement -

Featured Whitepapers

	5 Best Practices for Smartphone Support Worldwide shipments of smartphones reached a high of nearly 40 million units in the third quarter of 2008, helping to grow the category by 28% from the same quarter last year.
	Legacy Tools: Not For Today’s Helpdesk Why applications like RDP, VPNs and VNC may be costing you time, money and end-user satisfaction.

Today on iTWire

Follow iTWire on Twitter

About iTWire

iTWire is all about technology news, information, jobs and community for the IT and telecommunications industry professional. Subscribe to our free ICT daily newsletter

website free tracking