OSNews:

OSNews: http://www.osnews.com/story/21804/Recent_Internet_Explorer_Flaw_a_Year_Old Exploring the Future of Computing en-us Copyright 2001-2009, David Adams adam+nospam@osnews.com Thu, 26 Nov 2009 22:33:32 GMT http://www.osnews.com/images/osnews.gif OSNews.com http://www.osnews.com not really anything new http://osnews.com/thread?372672 http://osnews.com/thread?372672 MS has had many holes they have known about for long long periods of time that are fixed way after (or are at least made public way after). what i am corious about is if this is getting attention now, does that mean someone or somethings has been exploiting it? Thu, 09 Jul 2009 21:20:00 GMT donotreply@osnews.com (poundsmack) Comments RE: not really anything new http://osnews.com/thread?372746 http://osnews.com/thread?372746 From what I've read the exploit has been employed for about a month and has already taken some traction.

Not much more, could Google it... but I'm lazy... Fri, 10 Jul 2009 03:06:00 GMT donotreply@osnews.com (looncraz) Comments One year? Not too bad! http://osnews.com/thread?372801 http://osnews.com/thread?372801 If Microsoft was warned of this a year ago, that's not too bad.

Of course, I'm joking; if they were warned a year ago, then the problem should have been fixed 364 days ago. But look at Apple - they were warned of a particular dumb security problem four years before they fixed it. The infamous one; where Applescripts could tell setuid root programs to launch and "run a shell script" as root. Fri, 10 Jul 2009 11:12:00 GMT donotreply@osnews.com (3rdalbum) Comments RE: One year? Not too bad! http://osnews.com/thread?372875 http://osnews.com/thread?372875

If Microsoft was warned of this a year ago, that's not too bad.

Of course, I'm joking; if they were warned a year ago, then the problem should have been fixed 364 days ago. But look at Apple - they were warned of a particular dumb security problem four years before they fixed it. The infamous one; where Applescripts could tell setuid root programs to launch and "run a shell script" as root.

Well, Apple didn't integrate Samba fixes for 2 years, right? It's surprising that they've put out security fixes for Safari 4, twice since it was released. That probably means that the iPhone version is hanging out in the open, but there are only a few million users, right?

Well, IE and WinXP make a powerful combination for looters anyway and almost always has. I can't count all the times the t.v. news was talking about identity theft as the user was videotaped using IE. The interesting thing about this one is that Win2000 isn't affected and that Vista isn't affected either. Fri, 10 Jul 2009 19:26:00 GMT donotreply@osnews.com (bousozoku) Comments RE[2]: One year? Not too bad! http://osnews.com/thread?372912 http://osnews.com/thread?372912 Without being overly paranoid, was Microsoft using this "entry point" for its own purposes given that Windows XP has been its dominant business/end-user product for about 6-7 years now? Sat, 11 Jul 2009 01:20:00 GMT donotreply@osnews.com (BlueofRainbow) Comments