Democratic Underground Latest Greatest Lobby Journals Search Options Help Login
Google

PSA - Internet Explorer is not safe to use.

Printer-friendly format Printer-friendly format
Printer-friendly format Email this thread to a friend
Printer-friendly format Bookmark this thread		 This topic is archived.
Home » Discuss » Archives » General Discussion (1/22-2007 thru 12/14/2010) Donate to DU
 
MazeRat7 Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Dec-16-08 01:39 PM
Original message
PSA - Internet Explorer is not safe to use.
While I doubt many well informed DU'ers are still actually still using Internet Explorer, if you are the experts are urging you to use an alternative browser until this latest security flaw is fixed. While many of us long ago left the fold of Redmond for a more "secure" computing experience, for those that still use MS products at least please use an alternative web browser like Firefox, Opera, Safari, etc, etc...

So as a public service, you have been warned (once again).

Now back to your regularly scheduled discussions...

Peace,
MZr7


A malignant security flaw found in all versions of Microsoft's Internet Explorer browser has yet to be fixed, and the problem is spreading. Microsoft detailed the flaw in a security update blog post six days ago. Since then, the problem has spread across the globe, hitting at least 2 million computers.

Unlike other computer exploits, this one does not require users to click on fishy links or download mysterious software: it plagues computers that simply open an infected Web page.

Internet Explorer is currently used by 69 percent of Web surfers. The flaw hides inside the data binding function of the browser and causes IE to quit unexpectedly and reopen vulnerable to prying eyes.

So far most of the attacks have been geographically centered on China and have been used for the purposes of stealing computer game passwords. But with a flaw as gap-toothed as this, the possibilities of nefarious action could include the massive theft of personal information such as administrative computer passwords and financial data.
http://www.washingtonpost.com/wp-dyn/content/article/2008/12/16/AR2008121601022.html


Users of Microsoft's Internet Explorer are being urged by experts to switch to a rival until a serious security flaw has been fixed.

The flaw in Microsoft's Internet Explorer could allow criminals to take control of people's computers and steal their passwords, internet experts say.
Microsoft urged people to be vigilant while it investigated and prepared an emergency patch to resolve it.
Internet Explorer is used by the vast majority of the world's computer users.
Printer Friendly | Permalink |  | Top
Warpy Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Dec-16-08 01:39 PM
Response to Original message
1. Kick
Oh, and http://www.mozilla.com/en-US/

If you don't have it, get it.
Printer Friendly | Permalink |  | Top
 
asjr Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Dec-16-08 01:42 PM
Response to Reply #1
3. Is it free?
Printer Friendly | Permalink |  | Top
 
Sub Atomic Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Dec-16-08 01:43 PM
Response to Reply #3
4. Yep!
Printer Friendly | Permalink |  | Top
 
Mabus Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Dec-16-08 01:44 PM
Response to Reply #3
6. Yes
And so are the add-ons and their e-mail products like Thunderbird.
Printer Friendly | Permalink |  | Top
 
Warpy Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Dec-16-08 01:55 PM
Response to Reply #3
10. Would I *ever* link to anything that's not free?
Well, at least without a warning.

I'm cheap but never easy. Yes, it's free.
Printer Friendly | Permalink |  | Top
 
asjr Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Dec-16-08 02:00 PM
Response to Reply #10
14. Thanks. I will give myself a Christmas
present.
Printer Friendly | Permalink |  | Top
 
alfredo Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Dec-16-08 02:13 PM
Response to Reply #3
16. Here's some free browsers to try.
Opera
http://www.opera.com/
Firefox
http://www.mozilla.com/en-US/firefox/
Safari
http://www.apple.com/safari/
Chrome
http://www.google.com/chrome
Seamonkey
http://www.seamonkey-project.org/

Give em a try and pick the one most pleasing to use.
Printer Friendly | Permalink |  | Top
 
Cessna Invesco Palin Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Dec-16-08 01:46 PM
Response to Reply #1
8. I've been using Chrome on Windows XP for the past couple of days.
I'm not exactly a power-user, but it's fast and it gets the job done. It doesn't crash anywhere near as often as Firefox in my (very limited) experience.
Printer Friendly | Permalink |  | Top
 
Subdivisions Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Dec-16-08 01:41 PM
Response to Original message
2. How can you know if you've been compromised? n/t
Printer Friendly | Permalink |  | Top
 
MazeRat7 Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Dec-16-08 01:54 PM
Response to Reply #2
9. You can't really.... Here is how it works...
Specifically, the problem occurs when Internet Explorer handles the following html tags:

* img
* script
* embed
* object
* param
* style
* bgsound
* body
* input

If these tags are preceded by the file protocol specification, a remote attacker can access arbitrary local files on a victim's system.

http://www.xdisclose.com/XD100099.txt">The full details are here
Bottom line, this is a flaw that requires you to download nothing, only be running IE.

Peace,
MZr7
Printer Friendly | Permalink |  | Top
 
tridim Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Dec-16-08 01:58 PM
Response to Reply #9
13. That doc specifically references IE6.
An old version.
Printer Friendly | Permalink |  | Top
 
MazeRat7 Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Dec-16-08 02:01 PM
Response to Reply #13
15. That was only the initial bug report... from the articles I posted IE7 is also vulnerable
Edited on Tue Dec-16-08 02:02 PM by MazeRat7
Microsoft says it has detected attacks against IE 7.0 but said the "underlying vulnerability" was present in all versions of the browser.


Peace,
MZr7
Printer Friendly | Permalink |  | Top
 
DonEBrook Donating Member (506 posts) Send PM | Profile | Ignore Tue Dec-16-08 01:56 PM
Response to Reply #2
11. It hurts when you pee.
;-)
Printer Friendly | Permalink |  | Top
 
Subdivisions Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Dec-16-08 02:15 PM
Response to Reply #11
17. I love these little morsels of
levity! Thanks :D
Printer Friendly | Permalink |  | Top
 
Ichingcarpenter Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Dec-16-08 01:44 PM
Response to Original message
5. I've met a lot of naive computer users that don't know other browsers are free
Or compatible to their computer.

Internet Exploder is also the slowest browser out of almost all of them.
Printer Friendly | Permalink |  | Top
 
Kalyke Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Dec-16-08 02:16 PM
Response to Reply #5
18. I find Firefox slower at home.
They're the same on a T-1 line at work, though.
Printer Friendly | Permalink |  | Top
 
Catherine Vincent Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Dec-16-08 01:45 PM
Response to Original message
7. I haven't been able to open IE on my home pc for a while now.
I need a new computer.
Printer Friendly | Permalink |  | Top
 
DonEBrook Donating Member (506 posts) Send PM | Profile | Ignore Tue Dec-16-08 01:57 PM
Response to Reply #7
12. Auction that puppy on Ebay...lots of people would love to have it!
:D
Printer Friendly | Permalink |  | Top
 
Ichingcarpenter Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Dec-16-08 02:23 PM
Response to Original message
19. Free Browsers to download
All are free and I think better than IE. Each link gives you info on their browser

Safari for windows: http://www.apple.com/safari/

Mozella (firefox) for windows: http://www.mozilla.com/en-US/firefox/


Opera: http://www.opera.com/


Google Chrome: http://www.google.com/chrome
Printer Friendly | Permalink |  | Top
 
qb Donating Member (1000+ posts) Send PM | Profile | Ignore Tue Dec-16-08 03:05 PM
Response to Original message
20. I stopped using IE years ago because of the index.dat file.
It resides on your hard disk and records every web site you have ever visited. You can't reset or delete it without a hack.
Printer Friendly | Permalink |  | Top
 
DU AdBot (1000+ posts) Click to send private message to this author Click to view this author's profile Click to add this author to your buddy list Click to add this author to your Ignore list Thu May 02nd 2024, 08:15 AM
Response to Original message
Advertisements [?]
 Top

Home » Discuss » Archives » General Discussion (1/22-2007 thru 12/14/2010) Donate to DU

Powered by DCForum+ Version 1.1 Copyright 1997-2002 DCScripts.com
Software has been extensively modified by the DU administrators

Important Notices: By participating on this discussion board, visitors agree to abide by the rules outlined on our Rules page. Messages posted on the Democratic Underground Discussion Forums are the opinions of the individuals who post them, and do not necessarily represent the opinions of Democratic Underground, LLC.

Home  |  Discussion Forums  |  Journals |  Store  |  Donate

About DU  |  Contact Us  |  Privacy Policy

Got a message for Democratic Underground? Click here to send us a message.

© 2001 - 2011 Democratic Underground, LLC