Hours after release, Internet Explorer 7 flaw exposed

By
Follow google news

Just hours after the latest version of Microsoft's Internet Explorer web browser was released, its first vulnerability was disclosed to the public.


The flaw in Internet Explorer 7 (IE 7), discovered today by Secunia, can be exploited by malicious users to disclose sensitive information, according to the vulnerability monitoring firm.
The flaw is caused by an error in redirection handling for URLs with the mhtml: URI handler, according to an advisory posted by Secunia today that calls the flaw "less critical."
Internet explorer was released earlier this week with the promise of increased protection from phishing attacks and other threats.
Microsoft announced in late July that it would push IE 7 for Windows XP as a high-priority security patch through Automatic Updates.
However, the company also said at the time that it would give users the choice not to install IE 7.
A malicious spoofed website was discovered this week that pretends to be from Microsoft but downloads trojans to innocent users' PCs.
Click here to email Frank Washkuch Jr.

Add iTnews as your trusted source

Add iTnews As Your Trusted Source Add iTnews As Your Trusted Source
Got a news tip for our journalists? Share it with us anonymously here.
Tags:
afterexplorerexposedflawhoursinternetreleasesecurity

Sponsored Whitepapers

5 reasons to adopt a mobile first security strategy
5 reasons to adopt a mobile first security strategy
Uncomplicate IT Service Delivery with AI Agents
Uncomplicate IT Service Delivery with AI Agents
Getting ahead of the tech: what’s next for Australian organisations in digital transformation
Getting ahead of the tech: what’s next for Australian organisations in digital transformation
Fintech compliance made fast and secure
Fintech compliance made fast and secure
How to evaluate SIEM solutions Safeguarding your future Get a demo Download guide
How to evaluate SIEM solutions Safeguarding your future Get a demo Download guide

Events

Most Read Articles

Supply chain attack hits 100 million-download Axios npm package

Supply chain attack hits 100 million-download Axios npm package
NAB is co-designing a SIEM with Databricks

NAB is co-designing a SIEM with Databricks
APRA pulls data submission system after security pentest

APRA pulls data submission system after security pentest
Gov proposes disclosure delay for most serious cyberattacks

Gov proposes disclosure delay for most serious cyberattacks
techpartner.news logo
Sydney-based AI-cloud waste startup raises $3m
Sydney-based AI-cloud waste startup raises $3m
Brennan uses NiCE to modernise its contact centre
Brennan uses NiCE to modernise its contact centre
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Interactive introduces private cloud platform
Interactive introduces private cloud platform
Digital61 expands cybersecurity portfolio
Digital61 expands cybersecurity portfolio

Log In

  |  Forgot your password?