Linked by Thom Holwerda on Mon 18th Jan 2010 17:03 UTC
Internet Explorer France has echoed calls by the German government for web users to find an alternative to Microsoft's Internet Explorer to protect security. Certa, a government agency that oversees cyber threats, warned against using all versions of the web browser.
Thread beginning with comment 404800
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE[4]: Comment by Kroc
by lemur2 on Tue 19th Jan 2010 00:27 UTC in reply to "RE[3]: Comment by Kroc"
lemur2
Member since:
2007-02-17

MS really isn't to blame here, it's more cheap companies that don't want to touch working systems until they die. Companies that have local activex apps can still use an alternative browser when they get on the internet. I've heard excuses for Google about them having to keep IE6 around for testing. That may be true but that doesn't mean they have to open their mail with it. Geez.


The particular exploit which this is all about affects almost all versions of IE and Windows.

http://www.itworld.com/security/93045/dump-internet-explorer-now

I've always known that Internet Explorer was an insecure mess, but this latest attacks on Google and dozens of other companies has really opened my eyes to just how bad it really is. The latest zero-day flaw exists not just in bad old IE 6, but in every modern version of IE.

To be exact, according to Microsoft, the same security hole is in IE6, IE7 and IE8 on Windows 2000, XP, Server 2003, Vista, Server 2008, Windows 7 and Server 2008 R2 are vulnerable to attack. In other words, if you're running any remotely current version of IE or Windows, you can be hacked. Great. Just great. How anyone on the planet can actually believe Microsoft when, with every new release of either their browser or operating system they claim that they're more secure, is beyond me.


Edited 2010-01-19 00:33 UTC

Reply Parent Score: 4

RE[5]: Comment by Kroc
by nt_jerkface on Tue 19th Jan 2010 02:22 in reply to "RE[4]: Comment by Kroc"
nt_jerkface Member since:
2009-08-26

The particular exploit which this is all about affects almost all versions of IE and Windows.

Here's a better link:
http://blogs.technet.com/srd/archive/2010/01/15/assessing-risk-of-i...

As you can see it's only exploitable in IE6.

You linked to an article by SJVN who is a well known ABMr that could care less about providing a honest assessment of the situation.

Reply Parent Score: 2

RE[6]: Comment by Kroc
by lemur2 on Tue 19th Jan 2010 03:58 in reply to "RE[5]: Comment by Kroc"
lemur2 Member since:
2007-02-17

"The particular exploit which this is all about affects almost all versions of IE and Windows.
Here's a better link: http://blogs.technet.com/srd/archive/2010/01/15/assessing-risk-of-i... As you can see it's only exploitable in IE6. You linked to an article by SJVN who is a well known ABMr that could care less about providing a honest assessment of the situation. "

The exploit code example that was released only affects XP and IE6. The security hole that was exploited exists in IE6, IE7 and IE8, on most versions of Windows.

SJVN might well be an ABMr just as you are an anti-freedomer, but nevertheless when he indicated which versions of IE and Windows were vulnerable, SJVN was only quoting Microsoft themselves.

To be exact, according to Microsoft, the same security hole is in IE6, IE7 and IE8 on Windows 2000, XP, Server 2003, Vista, Server 2008, Windows 7 and Server 2008 R2 are vulnerable to attack.


Edited 2010-01-19 04:01 UTC

Reply Parent Score: 3