Posts Tagged ‘ie’

Hackers can now see all the Files on your System ! IE warning ! Use Chrome :)

February 4th, 2010 No Comments   Posted in Do QA Right!, What THE |= ?

Microsoft today issued a security advisory to acknowledge an information disclosure hole in its Internet Explorer browser and warned that an attacker could exploit the flaw to access files with an already known filename and location.

The vulnerability was first discussed at this week’s Black Hat DC conference by Jorge Luis Alvarez Medina, a security consultant with Core Security Technologies.   Microsoft says the risk is highest for IE users running Windows XP or who have disabled the browser’s Protected Mode feature.

Medina’s  presentation demonstrated how an attacker can read every file of an IE user’s filesystem.  The attack scenario leveraged different design features of Internet Explorer that can be combined to do serious damage.

Here’s more on Medina’s talk from DarkReading’s Kelly Jackson-Higgins:

[Medina] says More »

  • Share/Bookmark

Tags: , ,
Get Adobe Flash playerPlugin by wpburn.com wordpress themes