Members of the SWI support forums have uncovered a very nasty flaw, already being exploited by malicious hackers, that allows trojans and other malicious software to be introduced onto a machine via Internet Explorer despite security settings.

A file is dropped onto the infected system using ActiveX drive by, the file is run, and then immediately loads the Windows application MSHTA.EXE from the Windows folder. MSHTA.EXE is put into "hot standby", ready to accept HTA scripting within a web page and then EXECUTE what is embedded IN the page as if it were a program. In other words, this flaw makes it possible for a malicious website to embed trojans, worms and/or viruses directly into a web page and infect visitors using Internet Explorer.

http://www.spywareinfo.com/newsletter/archives/july-2003/29.php#htasploit

This thing is a true nasty, not only is it capable of just about anything on its own, it is frequently seen in tandem with some of the nastiest, vilest foistware(spyware) known.

M$ found a flaw, this must be incredibly shaming to them, they are usually so PERFECT...:D :D :D :rolleyes:

Anyway back to reality, I assume if you don't use IE, you are safe from this bug???

More or less, yep, much less chance of problems with IE sandboxed. Basically use your firewall to keep IE from going anywhere, and manually let it out to connect to Windows Update, and the occasional trusted (most likely banking) site that refuses to work with another browser.

If IE is a must then security should be tight...no ActiveX (the miniumum should be to prompt, even for signed) for the Internet Zone and specifically add certain sites to the trusted zone.