“A security problem originally found in Microsoft’s Internet Explorer 6 browser has returned to haunt IE7, the new version of the browser launched two weeks ago, a security consultant said Monday,” Jeremy Kirk reports for IDG News Service.
“Danish security consultancy Secunia posted an advisory regarding an issue where an attacker could potentially snare logins and passwords from an unsuspecting IE7 user. Over two years ago, security researchers reported the same fault in IE6,” Kirk reports.
Kirk reports, “If a user visits a Web site specially crafted by an attacker, and then opens a ‘trusted’ site such as a bank or e-commerce site that has a pop-up window, the attacker can put new content into the pop-up, Secunia CTO Thomas Kristensen said. This could enable the attacker to ask a user for financial information or passwords, he said.”
Full article here.
MacDailyNews Take: Garbage stinks.
Microsoft Internet Explorer 7 plays catch up, sees first exploit less than 24 hours after release – October 19, 2006
Moving Microsoft Internet Explorer Favorites to Apple Safari Bookmarks when you switch – June 08, 2006
Dvorak: Microsoft should just kill Internet Explorer – April 26, 2006
Security report shows Microsoft’s Internet Explorer was unsafe for all but seven days of 2004 – March 22, 2005
Security expert: Don’t use Microsoft Windows, Office, Outlook, Internet Explorer – December 09, 2004
Microsoft Windows, Internet Explorer products reflect arrogance, sloppiness – November 21, 2004
Web Standards Project: Abandon Microsoft Internet Explorer and ‘Browse Happy’ – August 25, 2004
Securty expert: Microsoft Internet Explorer ‘just cannot be trusted, use alternate browser’ – July 02, 2004
Security firm warns of new Internet Explorer flaw, advises ‘use a different browser’ – July 01, 2004
Microsoft axes Internet Explorer for Mac – June 13, 2003