Web Site Attacks Against Unpatched IE Flaw Spike - Slashdot

Please create an account to participate in the Slashdot moderation system

×

Web Site Attacks Against Unpatched IE Flaw Spike 268

Posted by Zonk on Monday March 27, 2006 @02:29PM from the not-a-good-spike dept.

An anonymous reader wrote to mention a Washingtonpost.com article about an increase in attacks against IE users via a critical, unpatched flaw. The bug allows software to be downloaded to the vulnerable PC even if the only act the user takes is browsing to a web site. From the article: "[A] password-stealing program landed on the Windows PC belonging to Reaz Chowdhury, a programmer for Oracle Corp. who works out of his home in Orlando, Fla. Chowdhury said he's not sure which site he browsed in the past 24 hours that hijacked his browser, but he confirmed that the attackers had logged the user name and password for his company's virtual private network (VPN)."

This discussion has been archived. No new comments can be posted.

Web Site Attacks Against Unpatched IE Flaw Spike

Search 268 Comments Log In/Create an Account

Comments Filter:

Patch released! (Score:5, Funny)

by spaztik ( 917859 ) writes: on Monday March 27, 2006 @02:33PM (#15004459)

Download here:
http://www.mozilla.com/firefox/ [mozilla.com]

Share
twitter facebook
Re:Ugh (Score:3, Funny)

by kevin_conaway ( 585204 ) writes: on Monday March 27, 2006 @02:37PM (#15004494) Homepage

Whats wrong with it? I've noticed attacks against the Flaw Spike too.

Parent Share
twitter facebook
"... said he's not sure which site he browsed..." (Score:5, Funny)

by UberOogie ( 464002 ) writes: on Monday March 27, 2006 @02:38PM (#15004500)

*cough*porn*cough*

Share
twitter facebook
Ugh (Score:5, Funny)

by ZombieRoboNinja ( 905329 ) writes: on Monday March 27, 2006 @02:38PM (#15004503)

I know this is Slashdot, but can we at least have our grammar Nazis spell "grammatically" correctly?

Parent Share
twitter facebook
Re:Ugh (Score:5, Funny)

by dotpavan ( 829804 ) writes: on Monday March 27, 2006 @02:44PM (#15004549) Homepage

spelling Nazi criticizing grammar nazi :)

Parent Share
twitter facebook
Re:Now that's a solution! (Score:3, Funny)

by tinkertim ( 918832 ) * writes: on Monday March 27, 2006 @02:44PM (#15004551)

I'm guessing Mozilla is at the top of the list ...

Parent Share
twitter facebook
Re:nope (Score:5, Funny)

by UberOogie ( 464002 ) writes: on Monday March 27, 2006 @02:48PM (#15004585)

You and your facts and your articles, bah. It's funnier my way.

Parent Share
twitter facebook
Was the City of Tuttle, Oklahoma... (Score:5, Funny)

by sharkey ( 16670 ) writes: on Monday March 27, 2006 @02:49PM (#15004596)

one of the sites that has been "hacked" to exploit this flaw?

Share
twitter facebook
Re:This is becomming not funny (Score:3, Funny)

by kpainter ( 901021 ) writes: on Monday March 27, 2006 @02:57PM (#15004652)

"They have to do MASSIVE regression testing." Ahhh, that explains it. It must be working because IE regresses with each and every day.

Parent Share
twitter facebook
Re:Ugh (Score:5, Funny)

by Anonymous Coward writes: on Monday March 27, 2006 @02:59PM (#15004666)

That's why they lost WW2.

Parent Share
twitter facebook
Re:Ugh (Score:1, Funny)

by Anonymous Coward writes: on Monday March 27, 2006 @03:00PM (#15004683)

didn't have any problems, guess I must be one of those luck people who can understand things and not just take them blindly at face value.

How very luck for you.

Parent Share
twitter facebook
Re:*sigh* (Score:3, Funny)

by MasterC ( 70492 ) writes: <cmlburnett@gm[ ].com ['ail' in gap]> on Monday March 27, 2006 @03:05PM (#15004721) Homepage

So why don't they program firefox to render pages the same way IE does it?

I'm just flabbergasted at the thought that I'm not even sure where to begin on a reply. What you are asking...is basically asking them to...break...firefox. I'm all for demolition and breaking stuff just as much as the next guy but that's usually in the name of progress and I see little "progress" in such a proposal.

As lame and well-used as it is: what you're proposing is for the firefox developers to jump off a bridge just becuase 90% of the people are doing it...

By no means am I saying firefox is perfect, but....damn dude.

Parent Share
twitter facebook
Re:a programmer for Oracle Corp (Score:3, Funny)

by slakdrgn ( 531347 ) writes: on Monday March 27, 2006 @03:21PM (#15004862) Homepage

Its more, how much longer will he have a job after releasing this information...

I doubt he talked to his boss before blabbing that one.

Parent Share
twitter facebook
Anyone.. (Score:2, Funny)

by Viraptor ( 898832 ) writes: on Monday March 27, 2006 @03:57PM (#15005166) Homepage

Anyone else finds something funny in this sentence?
"...hackers have infected at least 200 sites, many of which you would not normally expect to associate with such attacks (i.e., porn and pirated-software vendors)."
I see two things...

Share
twitter facebook
Re:Ugh (Score:3, Funny)

by zerocool^ ( 112121 ) writes: on Monday March 27, 2006 @04:12PM (#15005290) Homepage Journal

Godwin explodes. Details at 11.

~W

Parent Share
twitter facebook
Re:That why I stay with #2 or #3 (Score:3, Funny)

by rabel ( 531545 ) writes: on Monday March 27, 2006 @05:15PM (#15005935)

Reminds me of one of the developers I worked with many years ago. Out of the blue, he announces he is getting married. Nobody was really "tight" with this guy, so this wasn't all that shocking. However, he brought his new bride into the office a couple of weeks later, after the honeymoon. She wasn't all that attractive, to say the least. Anyhow, in casual conversation he takes it upon himself to mention that, "I know she's not the most attractive woman out there, but at least I know other men won't be tempted to steal her away."

This is a true story. So, keep dating those wallflowers and using those obscure O/S's, boys! It's SAFER that way!

Parent Share
twitter facebook
Internet Exploder and the people who still use it (Score:1, Funny)

by Anonymous Coward writes: on Monday March 27, 2006 @10:20PM (#15008056)

There are die-hard people who just insist that the only browser they use is internet exploder. For those people, go out, find this virus, get your computer infected, let the bad people steal your banking information and your identity. Then when you've had just about enough, go to the mirror, stare into it with intensity, suck in a big deep breath of air, clench your fists, lower your eyebrows and shout at the image in the mirror "DUMBASS!" Then, go out and get another browser (one that doesn't suck or turn your computer into a botnet slave). You could switch before you get the infection (and all that), but if you haven't switched before now, then its best if the therapy is more harsh.

Share
twitter facebook
And the bottom line is ... (Score:3, Funny)

by RockDoctor ( 15477 ) writes: on Tuesday March 28, 2006 @07:29AM (#15009571) Journal

FTFA : Case in point: One guy I contacted to tell him his site was serving up this exploit code went to check his home page and then told me his browser just crashed on him. I had to ask: "Don't tell me you just visited the site in IE?" He had. I could only shake my head and sigh.

BEATS HEAD SLOWLY AGAINST BRICK WALL.
THIS IS UNSATISFACTORY.
GOES OUT AND FINDS granite WALL.
BEATS HEAD AGAINST IT.
MUCH BETTER!

Share
twitter facebook

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Related Links Top of the: day, week, month.

413 commentsChatGPT Leans Liberal, Research Shows
347 commentsAmazon CEO Says 'It's Probably Not Going To Work Out' For Employees Who Defy Return-to-Office Policy
327 commentsHotel Owners Start To Write Off San Francisco as Business Nosedives
323 commentsChina is Building Nuclear Reactors Faster Than Any Other Country
315 commentsChina is Calling in Loans To Dozens of Countries

To the systems programmer, users and applications serve only to provide a test load.