MS IE Patch doesn't work? [Archive] - The PC Guide Discussion Forums

View Full Version : MS IE Patch doesn't work?

PrntRhd

09-10-2003, 10:40 PM

I saw this tonight regarding HTA in Internet Explorer:

http://www.spywareinfo.com/

Another reason to get a different browser?

And Another NT/2000/XP Flaw:

http://www.microsoft.com/security/security_bulletins/ms03-039.asp:mad:

pave_spectre

09-11-2003, 01:58 AM

One of many reasons why I use Opera and only use IE for getting windows updates.

Mosaic1

09-11-2003, 01:09 PM

PrntRhd,

Your link to SpywareInfo takes a detour. Although the page is harmless, that's the kind of thing which I hate to see. If you want to link to your 9/11 page then do it. But not that way. Just my opinion. Sept 11 or not this trick is not welcome. It's alarming to be taken to a page against your will.

Mo

Paul Komski

09-11-2003, 01:28 PM

It would seem to just be the default page for spywareinfo.

Perhaps they just put it up temporarily re 9/11.

There's not much that surfers can do if the website changes it's default page.

Mosaic1

09-11-2003, 03:13 PM

PrntRhd,
Sorry about that. I didn't read your link correctly.

& Paul Komski,
You're right. Sorry. That link goes to the home page and not the thread in question.
Here's a direct link to the thread at SpywareInfo regarding this issue. Click for more information.

http://forums.spywareinfo.com/index.php?showtopic=10997

Mo

( In need of glasses and sleep. But I am resisting both.)

PrntRhd

09-12-2003, 12:26 AM

Mosaic1,

My apologies, the spywareinfo website did not have the 9/11 page up when I posted.

The issue I wanted to raise was the ineffective MS patch for the HTA flaw.

I have the nsclean HTA-stop loaded on my machine but the test link on the original site indicated that the vunerability was still active on my computer!!

The flaw lets a crafted website load anything it desires without even popping up a dialog box for permission, that is as scary as all heck.

PrntRhd

09-12-2003, 09:54 AM

The 9/11 stuff is now gone from the link:
http://www.spywareinfo.com/

It is their weekly newsletter.

I changed my firewall settings for nsclean's StopHTA and that helped on testing. Still learning.

I am test driving MozillaFirebird too.
:cool:

Galadriel

09-19-2003, 06:43 PM

I need to lurk here more often..... ;)

Yeah that patch doesn't help the issue. This flaw can be a dangerous one and it is starting to be seen in the wild as exploits. IE is and, as long as all those unpatched flaws exist, will remain an unsafe browser to most.

Mozilla and Firebird are practically immune but everyone should raise their awareness level if they want to stay protected.

Stay up to date, all patches upon release should still be installed to insure a minimum of safety. Things do get by the defenses, but a good head and some common sense will help tighten the security as well.

Cheers,

Cat