Secunia Research has found yet another flaw in Internet Explorer 7.
The problem is that a website can inject content into another site’s window if the target name of the window is known. This can e.g. be exploited by a malicious website to spoof the content of a pop-up window opened on a trusted website.
This follows immediately after two recent bugs in IE7, viz. Internet Explorer 7 “mhtml:” Redirection Information Disclosure and Internet Explorer 7 Popup Address Bar Spoofing Weakness Advisory Available in Danish
The flaw has been marked as Moderately critical.
As of now there is no update on a solution to the flaw. So the only way to protect yourself for now is to not browse unknown websites.
Via: C|Net News
Liked this article? Subscribe to site feed
, subscribe via email or add to your Technorati favs to receive regular updates..
Post Details
- Post Date :
- Monday, Oct 30th, 2006 at 10:47 pm
- Category :
- Browsers and Internet Explorer and Security and Software
- Tags :
- Browsers, bugs, flaw, Internet Explorer, Security, vulnerability
- Do More :
- You can leave a response or a trackback from your own site.
Related Posts
Some posts related to the post you have just read:
Leave a Reply