Tags: browser, exploit, explorer, security

RSS feed

News (67)

IE7 under attack from 'accidental' zero-day exploit

Internet Explorer 7 (IE7) users are threatened by a zero-day exploit that may have been "accidentally" let loose by Chinese security researchers, is expected to cause havoc over the holiday period, according to several security companies. Read more »

Exploit code makes IE flaw more dangerous

The threat posed by a critical flaw in Internet Explorer has been ratcheted up by the release of a program designed to exploit the vulnerability, security researchers warned on Thursday. Read more »

IE plus Firefox equals 'critical' security risk

Firefox combined with Internet Explorer on the same desktop opens up a zero day vulnerability that is highly critical, according to security researchers. Read more »

Another Internet Explorer flaw found

A computer science researcher has highlighted the shortcomings of Microsoft's latest patch for its Internet Explorer browser by identifying another way that online vandals could run malicious programs on a Web surfer's computer. Read more »

Firefox phishing vulnerability discovered

A newly discovered flaw in Firefox could allow cybercriminals to take advantage of Web surfers. Read more »

IE flaws allow Web ad attack

An adware purveyor has apparently used two previously unknown security flaws in Microsoft's Internet Explorer browser to install a toolbar on victims' computers that triggers pop-up ads, researchers said this week. Read more »

'Dangerous' Flash exploit can infect by stealth

A Flash flaw discovered this month could change the face of Web security by allowing criminals to infect users of any browser or operating system with malware — without making their browser or application crash. Read more »

Facebook banner ad serves an IE exploit

Unpatched PCs running Internet Explorer could fall victim to adware when visiting social networking site Facebook. Read more »

Bumper crop of Microsoft patches on the way

Microsoft customers should brace for an onslaught of security updates. Read more »

Code to exploit Windows graphics flaw now public

A sample program hit the Internet on Wednesday, showing by example how malicious coders could compromise Windows computers by using a flaw in the handling of a widespread graphics format by Microsoft's software. Read more »

More Browser, Exploit, Explorer, Security News Results

Features (10)

Safe browser an oxymoron?

In November 2003, the CERT Coordination Center first advised Web users to consider using a Web browser other than Microsoft Internet Explorer. Read more »

The secrets of open source security

The Linux vs. Windows security debate is a contest of examples, which stand in place of the concepts that comprise a larger, more fundamental question of what the security benefits and detriments are for the open source and closed source development models. Read more »

Why interactive site features can conflict with security

Interactive features on Web sites can offer great benefits to users, but may conflict with security concerns. We look at the ongoing war between interactive Web site features and better browser security. Read more »

Watch out for IE Local Zone script injection flaw

A flaw in the way Internet Explorer handles some errors, discovered by security company GreyMagic, could result in an attacker being able to read local files on a system or run various scripting commands. Get the details. Read more »

What is cross-site scripting?

Cross-site scripting, also known as "XSS," is a class of security exploit that has gotten a fair bit of attention in the last few years. This article explains what it is and where the dangers lie. Read more »

Be proactive in your fight against malware

Mike Mullins discusses the merits of proactive security and explains why it's better to know whether a Web site is potentially harmful before you browse. Read more »

Bug hunters, software firms in uneasy alliance

Although many software makers promote responsible disclosure, it isn't universally backed by the security community. Critics say it could make security companies lazy in patching. Full disclosure of flaws is better is preferred. Read more »

Adding value changing functionality to the HTML file input element

The HTML file input element is a valuable commodity that can add value to intranet applications. This article provides simple code that will allow you to control the value of this element. Read more »

PHP gotchas to avoid

When you are debugging PHP code under a tight deadline, start by looking for the most typical problems. Topping the list should be parsing and scope errors. Read more »

Web services B2B implementation demonstration: Part 4

In the fourth article of our series on Web services B2B implementation, we implement business logic and Web services associated with John's business tier. Read more »

Blog (3)

2008: Time to call stumps

[blogs:syslog] -- It's another year down but some things never change. That was shown this week as Internet Explorer remained under fire from yet another zero-day exploit. In other news, we set a hard drive on fire and Apple cans its involvement with MacWorld. Read more »

2 comments

Unlocking Android

[blogs:syslog] -- In this week's roundup we take a look at Google's new technology -- Native Client, its Android phone, news from the world of web browsers and more. Read more »

1 comment

QuickTime and Firefox combine for insecurity

[blogs:byteclub] -- A vulnerability in Apple Software's QuickTime media player can be exploited to execute remote javascript code, or by tapping into Firefox's chrome engine can execute remote code of any kind. Read more »

Log in

News and features

Latest
Popular
Features
Most Discussed

Blogs

A first look at Windows 7 beta

In this week's Roundup we show you a preview of Windows 7 beta, cover news from the annual Macworld and more. Read more »

-- posted by Staff
Opera's new SDK: Better browsing on the Wii?

Opera has thrown a little more love at device developers by announcing an updated version of its software development kit on Wednesday at CES. Read more »

-- posted by Staff
2008: Time to call stumps

It's another year down but some things never change. That was shown this week as Internet Explorer remained under fire from yet another zero-day exploit. In other news, we set a hard drive on fire and Apple cans its involvement with MacWorld. Read more »

-- posted by Staff

Videos

Ratbags burn, smash and 'nuke' hard drives

2008/12/16 14:49:30

Play the video
Worst 2008 predictions

2008/12/11 10:40:47

Play the video
Five services you can turn off in Windows Server 2003

2008/10/01 13:58:07

Play the video

What's on?

Space pr0n, patent karma and Yang out -- Club Builder

On Club Builder this week: how NASA plans to get the Internet into space, Jerry Yang is out the door at Yahoo and Brendan Eich discusses javascript engine competition.