Thursday, April 13, 2006

New Phishing Hook Found in Internet Explorer

Well it seems just as soon as Microsoft fixes one hole another one pops up in Internet Explorer: A bug in Internet Explorer has been publicly disclosed that allows a phishing site to display a different URL in the address bar than that of the actual site displayed. The bug affects fully-patched Internet Explorer 6.0 systems.
According to Secunia the vulnerability is due to a flaw in the handling of Macromedia Flash .swf files in IE windows.
Secunia has a test that you can use to see if your browser is vulnerable.
Currently no patches have been announced or planned for the upcoming Microsoft patch day this week.
This is another really scary one folks. Ditch IE now ! I DID !


Post a Comment

Links to this post:

Create a Link

<< Home