|
|
Two More Internet Explorer Holes Discovered
By Jeremy Muncy
Staff Writer
Article Date: 2004-11-17
Security experts have began warning users of Microsoft's Internet Explorer of a couple of new security vulnerabilities that affect fully patched Windows XP Service Pack 2 systems.
An alert from the security firm Secunia carries a moderately critical rating, they state that "the holes could be exploited to bypass a security feature in XP SP2 and trick users into downloading a malicious file."
Secunia has also warned of yet another IE bug that causes an error when using a Javascript function. The newest vulnerability can be exploited to spoof a file extension in the "Save HTML Document" dialog, according to eWeek.com.
"The vulnerabilities have been confirmed on a fully patched system with Internet Explorer 6.0 and Microsoft Windows XP SP2," Secunia said, recommending that IE users disable Active Scripting support and the "Hide extension for known file types" option.
About the Author:
Jeremy Muncy is a staff writer for WebProNews.com
|
|
