NewsIE Climbs Into the "It's Not a Bug, It's a Feature" Browser Doghouse with Unpatched GIF Vulnerability

XSS vulnerability attacks IE

According to Kapersky Labs analyst Roel Schouwenberg, GIF files can include embedded JavaScript, and under certain circumstances, can be used to launch a cross-site-scripting (XSS) attack. Internet Explorer's vulnerable to this threat, and at least one web site's already been affected.

To find out how long Redmond's known about this problem, and how another browser vendor set Microsoft an example in how to deal with a reported vulnerability, join us after the jump.

Read More

Comments 
0
TAGS 
windows, Security, XSS, IE, JavaScript, GIF
FROM THE ARCHIVEVista Security Features Finally Getting Some Respect

While Windows Vista often takes a beating 'round these parts for problems with speed and compatibility with older software, its improved security features are helping make video playback and web browsing more secure. Find out how.

Read More

Comments 
2
TAGS 
XSS, QuickTime, IE8
NewsBrowser Wars, Part II

Find out who's king of the browser rendering sweepstakes, and which browser-come-lately has an "impossible" end-user license agreement - not to mention a couple of serious security flaws.

Read More

Comments 
1
TAGS 
windows, news, XSS, vulnerability, Browsers, Safari, Opera
NewsLeaky Addons Make for Big Security Risks for Firefox Users

Find out why your favorite Firefox add-ons can leave your system crying "Don't Chrome Me, Bro!" - and how to protect yourself.

Read More

Comments 
0
TAGS 
Software, Security, news, firefox, malware, Internet Explorer, XSS, URI, threats, Mozilla, script, JavaScript, security holes
NewsFake Microsoft Update Email Can Ruin Your Evening - Stop It Now!

You know that Microsoft never sends out email messages with links to Microsoft Update or Windows Update. Do your friends, family and co-workers know that? If they don't - be prepared to mop up the mess.

Read More

Comments 
0
TAGS 
windows, Software, news, virus, malware, antivirus, XSS, antimalware, Trojan Horse, fake email, sunbelt
FROM THE ARCHIVEGoogle's in the XSS Crosshairs - and So Are You

Googling your way around the Internet? Watch out - cross site scripting (XSS) makes Google and other sites less safe than you think.

Read More

Comments 
1
TAGS 
phishing, XSS, cross site scripting, pharming, threat, exploit, browser

THIS MONTH's ISSUE
Maximum PC
FEATURE The 2008 Dream MachineHOW TO Build a Custom Windows Restore DiscFIRST LOOK ATI's GeForce KillerHISTORY LESSON We celebrate 10 years of Maximum PC

Don't have an account? Register Now! Forgot password?