10/30/2006

Another IE 7 pop-up security flaw discovered

Filed under: — By Aviran Mordo @ 7:02 pm

Security researchers on Monday warned of a vulnerability in Internet Explorer 7 that could allow malicious attackers to alter content in a legitimate Web site’s pop-up window.

The browser flaw could affect users who visit a trusted site by opening a pop-up window in that site but containing malicious code. This is the second IE 7 flaw that has been discovered since Microsoft released the browser two weeks ago. Last week, a security flaw was discovered in IE 7 that could spoof the address of a pop-up window.

The two IE 7 flaws, if used in conjunction with each other, can easily dupe all but the most security-minded users, said Thomas Kristensen, chief technology officer of security company Secunia, which discovered the flaws.

Source: News.com

 

Leave a Reply

You must have Javascript enabled in order to submit comments.

All fields are optional (except comment).
Some comments may be held for moderation (depends on spam filter) and not show up immediately.
Links will automatically get rel="nofollow" attribute to deter spammers.

Powered by WordPress