Microsoft Breaks Netscape Rule In New Security Flaw

Subject: Microsoft Breaks Netscape Rule In New Security Flaw
From: Gary Stoneburner <stoneburner@nist.gov>
Date: Tue, 08 Jan 2002 20:20:21 -0500
Content-Type: multipart/alternative; boundary="=====================_3878074==_.ALT"

RE: http://www.info-sec.com/internet/02/internet_010702b_j.shtml

"The security bug, which affects all current versions of Internet Explorer for Windows, including IE 5.5 and IE 6, provides attackers with a grab-bag of techniques for stealing other users' browser cookies, reading some files on their hard disks, and "spoofing" the content of legitimate sites, according to ThePull, an independent security researcher who discovered the vulnerability."

Here we go again! :-)

Cheers,
Gary

************************************************************************** * Opinions expressed are not intended to reflect an official position ************************************************************************** * Gary Stoneburner *(been mobilized - Major, US Army Land Information Warfare Activity (LIWA)) * NIST contact points are still valid: * Phone: 301-975-5394, FAX: 301-948-0279, Email: Stoneburner@nist.gov **************************************************************************

Prev by Date: Search engines find the forbidden Next by Date: NRC Report Prev by thread: NRC Report Next by thread: Search engines find the forbidden Date Index | Thread Index | Problems or questions? Contact list-master@nist.gov