Monday, December 05, 2016
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
Apple Sent Letter NHTSA Asking About Autonomous Vehicle Guidelines
Apple Blames Battery For Random iPhone 6s Shutdowns
Microsoft Stores Reveal Xbox Discounts And Offers
Researcher Bypasses The iOS Activation Lock
Facebook To Offer $20 million To Improve Silicon Valley Communities
Xiaomi Launches Voice -controller Mi Wi-Fi Speaker
Xiaomi "Denies" Mi MIX Nano Existence
Nokia D1C Specs Leak
Active Discussions
Which of these DVD media are the best, most durable?
How to back up a PS2 DL game
Copy a protected DVD?
roxio issues with xp pro
Help make DVDInfoPro better with dvdinfomantis!!!
menu making
Optiarc AD-7260S review
cdrw trouble
 Home > News > General Computing > Microso...
Last 7 Days News : SU MO TU WE TH FR SA All News

Friday, October 20, 2006
Microsoft: no bug in Internet Explorer 7


A flaw that research firm Secunia ApS claimed to have discovered in Internet Explorer 7 just hours after its unveiling is not a browser bug after all, Microsoft said Thursday.

Instead, the problem lies in a component of Microsoft's Outlook Express email client, which can be triggered by the browser.

The flaw could be used in phishing attacks to read sensitive information from the IE browser, Secunia said. The Danish security firm first reported the problem with the IE 6 browser in April and found that it could be reproduced on IE 7 as well. Secunia's advisory can be found here: http://secunia.com/advisories/22477/

Secunia does not consider the problem to be critical, but it was widely reported because its discovery came so soon after IE 7's launch.

"These reports are technically inaccurate," wrote Christopher Budd, a security program manager with Microsoft, in a Thursday blog posting. "The issue concerned in these reports is not in Internet Explorer 7 (or any other version) at all." Budd's blog posting can be found here: ttp://blogs.technet.com/msrc/archive/2006/10/19/information-on-reports-of-ie-7-vulnerability.aspx

One security researcher said he was surprised that Microsoft had apparently not informed Secunia of the nature of this bug back in April, when it was first disclosed.

"They reported this in ... April," said Secure Network SRL Chief Technology Officer Stefano Zanero in an instant message interview. "Microsoft should have investigated then and should have already reported the bug to be not in IE."

"How was Secunia supposed to know?" he asked. A spokesman with Microsoft's public relations agency could not say what response Microsoft had made to Secunia's first report of the problem back in April. "All I can tell you is that the ... blog is the latest and greatest information we have to share," he said.


Previous
Next
ECS releases N7950GT-512MX & N7900GS-256MW graphics cards        All News        Creative Removes FM Recording
First demonstration of a working invisibility cloak     General Computing News      30K Clips Erased From YouTube on Japan Media Demand

Get RSS feed Easy Print E-Mail this Message

Related News
Microsoft Offers Grants to Organizations Working to Improve Affordable Internet Access
Microsoft Wants To Bring Something Different in The Smartphone Market
Microsoft's Solitaire Game Now Available On iOS And Android
Microsoft Joins The Linux Foundation, Google Embraces The .NET community
Microsoft Buys 237 Additional Megawatts of Wind Energy
Microsoft Introduces Chat-based Workspace in Office 365
Microsoft Identifies Russia-linked Hackers Exploiting Windows Flaw
Microsoft Researchers Reach Human Parity in Conversational Speech Recognition
Microsoft Cloud Strength Highlights First Quarter Results
Microsoft's Cloud Investments In Europe Hits $3 billion
Microsoft Creation New Artificial Intelligence and Research Group
Adobe and Microsoft Partner in the Azure Cloud

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2016 - All rights reserved -
Privacy policy - Contact Us .