BIGUN 1,490 #1 December 16, 2008 QuoteMicrosoft has begun flooding media outlets with information advising users to switch to an alternate browser while a serious security flaw is being patched. The flaw, which affects all versions of Microsoft Internet Explorer, is manifested via malware and has infected over 6000 sites thus far. Microsoft states: 'The vulnerability exists as an invalid pointer reference in the data-binding function of Internet Explorer. When data binding is enabled (which is the default state), it is possible under certain conditions for an object to be released without updating the array length, leaving the potential to access the deleted object's memory space. This can cause Internet Explorer to exit unexpectedly, in a state that is exploitable.'" Source: http://it.slashdot.org/article.pl?sid=08/12/16/1319217 Nobody has time to listen; because they're desperately chasing the need of being heard. Quote Share this post Link to post Share on other sites
skydiver30960 0 #2 December 16, 2008 Ah, that's the sign of a quality product right there baby! "Um, yeah. We made it, and we don't think you should use it." Elvisio "where are the trustbusters when we need 'em" Rodriguez Quote Share this post Link to post Share on other sites
skymama 37 #3 December 16, 2008 Suggestions on a download for a browser? What's a safe site?She is Da Man, and you better not mess with Da Man, because she will lay some keepdown on you faster than, well, really fast. ~Billvon Quote Share this post Link to post Share on other sites
SkydiveJack 1 #4 December 16, 2008 I appreciate you posting this information. But I want to point out that you didn't paste the last line from the report you copied. This makes your subject line inaccurate. Of course it probably means that Microsoft is trying to down play the seriousness of the situation. Below is the full report with the missing line highlighted. Regardless, there is a big problem here and I appreciate everyone who is posting advice and information. Full Report- It appears that the exploit in IE briefly mentioned a few days ago is causing a serious reaction: SteveAU writes "Microsoft has begun flooding media outlets with information advising users to switch to an alternate browser while a serious security flaw is being patched. The flaw, which affects all versions of Microsoft Internet Explorer, is manifested via malware and has infected over 6000 sites thus far. Microsoft states: 'The vulnerability exists as an invalid pointer reference in the data-binding function of Internet Explorer. When data binding is enabled (which is the default state), it is possible under certain conditions for an object to be released without updating the array length, leaving the potential to access the deleted object's memory space. This can cause Internet Explorer to exit unexpectedly, in a state that is exploitable.'" According to the BBC report, though, Microsoft itself is only asking that users be "vigilant while it investigated and prepared an emergency patch"; it's outside experts who say to dump IE (at least for now). Source: http://it.slashdot.org/...sid=08/12/16/1319217 Quote Share this post Link to post Share on other sites
PhreeZone 20 #5 December 16, 2008 No site or browser is really safe. They have all had major security issues in the last 6 months. Chrome, FireFox, SeaMonkey, IE, Mozilla... they all have security issues both known and unknown. Keep what ever browser you decide to use updated every few days is really the best bet you have.Yesterday is history And tomorrow is a mystery Parachutemanuals.com Quote Share this post Link to post Share on other sites
BIGUN 1,490 #6 December 16, 2008 It was not my subject line. The subject line was copy/pasted exactly from the title of their report, which was, "Microsoft says dump IE for awhile" and has now been changed to, "Experts Say To Switch Browsers In Light of IE Vulnerability." And, this... "According to the BBC report, though, Microsoft itself is only asking that users be "vigilant while it investigated and prepared an emergency patch"; it's outside experts who say to dump IE (at least for now). was added at 8:52 AM, whereas the DZ.com post was placed at 7:12 AM But, thanks for the update - Subject Line changed.Nobody has time to listen; because they're desperately chasing the need of being heard. Quote Share this post Link to post Share on other sites
micduran 0 #7 December 16, 2008 Quote Suggestions on a download for a browser? What's a safe site? I use Firefox. Don't see those pesky ads, either. Be patient with the faults of others; they have to be patient with yours. Quote Share this post Link to post Share on other sites
SkydiveJack 1 #8 December 16, 2008 Thanks for the explanation. Seems they did the old switheroo on you. Sorry if it seemed like I was splitting hairs on the subject line. The important thing is that you got this out to all of us and it is appreciated! Quote Share this post Link to post Share on other sites
BIGUN 1,490 #9 December 16, 2008 I just started playing with Google's Chrome and while bouncing around on sites, there was one where a BIG RED flag came up and stated, "This site has been identified as having malware - Do you wish to continue? It's kind of a IE "lite" and it is fast. I think it has potential, but it hasn't had a lot of developer add-on involvement yet, so I'm switching to FF with ADP for awhile.Nobody has time to listen; because they're desperately chasing the need of being heard. Quote Share this post Link to post Share on other sites
BIGUN 1,490 #10 December 16, 2008 No worries, mate... Appreciate the opportunity to clarify. Personally, I'm a fan of IE, but am going to flip to FF for awhile. Done it in the past and then flipped back to IE.Nobody has time to listen; because they're desperately chasing the need of being heard. Quote Share this post Link to post Share on other sites
NWFlyer 2 #11 December 16, 2008 QuoteSuggestions on a download for a browser? What's a safe site? http://www.mozilla.com/en-US/firefox/?from=getfirefox https://addons.mozilla.org/en-US/firefox/addon/1865"There is only one basic human right, the right to do as you damn well please. And with it comes the only basic human duty, the duty to take the consequences." -P.J. O'Rourke Quote Share this post Link to post Share on other sites
mrwrong 0 #12 December 16, 2008 If people just could learn to have a GOOD anti virus software (and for the love of all things in life make sure it updates) and use Windows/Microsoft Update function this wouldn't be such a problem. No I do not defend MS products now so don't flame me for stating this. I agree there is major design flaws... But there is ways around it and you don't have to be a geek to find them. I have managed to stay safe for years and years running standard MS software, never had a virus infection or get my PC hijacked. “The sum of intelligence on the planet is a constant; the population is growing.” - George Bernard Shaw He who dies with the most toys, wins..... dudeist skydiver # 19515 Buy quality and cry once! Quote Share this post Link to post Share on other sites
PhreeZone 20 #13 December 16, 2008 Patch is to release tomorrow. WEEEEEEEE!!!! Another out of cycle patch release!Yesterday is history And tomorrow is a mystery Parachutemanuals.com Quote Share this post Link to post Share on other sites
BIGUN 1,490 #14 December 16, 2008 http://blogs.zdnet.com/BTL/?p=11252 Yup... And as mrwrong says, "Turn on your Windows Update." EDIT: Nothing like a worldwide recommendation to flip browsers to create the motivation for an out-of-cycle patch, eh? Nobody has time to listen; because they're desperately chasing the need of being heard. Quote Share this post Link to post Share on other sites
