Friday, November 9, 2001
Another IE Hole -- 4:05 pm CST, Update by A.T. Hun
Yes kids, another Internet Explorer 5.5/6.0 security hole. This one exposes any information stored in cookies. As usual, disable scripting. Thankfully M$ seized the moral high ground and blamed the reporter. Here's a snip:Why isn’t there a patch available for this issue?It's like this: if you use IE's active scripting you are playing with fire. Yes, disabling it will also cause some IE-specific pages to cease functioning, but until MS proves it really cares about their users' security (pause for incredulous laughter) it is the only way to go. Or use Mozilla. Thanks Slashdot.
The person who discovered this vulnerability has chosen to handle it irresponsibly , and has deliberately made this issue public only a few days after reporting it to Microsoft. It is simply not possible to build, test and release a patch within this timeframe and still meet reasonable quality standards.
Recent Headlines
January 5, 2015: It Returns!
August 10, 2007: SCO SUCKS IT DOWN!
July 5, 2007: Slackware 12.0 Released
May 20, 2007: PhpBB 3.0 RC 1 Released
February 2, 2007: DOOM3 1.31 Patch
January 27, 2007: Join the World Community Grid
January 17, 2007: Flash Player 9 for Linux
December 30, 2006: Darkness over Daggerford 1.2
December 19, 2006: Pocket Tunes 4.0 Released
December 9, 2006: WRT54G 1.01.1 Firmware OK with Linux/Mac
The Haus is powered by:
All original information on this website is copyright © TheHaus.Net, 1999-2005. The use of original images, text, and/or code from this website without expressed written consent is prohibited. The authors of this site cannot be held responsible for any damage, real or imagined, which comes from the use of information presented on this site. All trademarks used are the properties of their respective owners. This site is not to be used as a floatation device (but if you try, I want a video tape of it).
![[Valid RSS]](/images/valid-rss.png "Validate my RSS feed")