Results 1 to 4 of 4

Thread: Unpatched Ie Security Holes...

  1. 09-16-2003, 11:02 AM #1
    nikita69
    nikita69 is offline
    Poster
    Join Date
    Jul 2003
    Posts
    973
    Why this page ?
    This page is a list of vulnerabilities that remain unpatched, it is our hope that the increased awareness brought forth may help further the research necessary to properly secure them.
    Vulnerabilities listed on this page work (among others) with the latest versions of Internet Explorer, with all patches installed.
    Until proper patches have been provided, the only fix to some of these vulnerabilities is to disable scripting.

    This page is, and always will be, a work in progress. This is not a definitive list of vulnerabilities.

    Back

    Miscellaneous news
    11 September 2003: There are currently 31 unpatched vulnerabilities.

    The latest cumulative Internet Explorer patch
    is released August 20, 2003 with the identifier MS03-032.
    Cumulative patches combine all previous IE patches, and should be considered mandatory installs.

    11 September 2003: Added Media bar ressource injection by jelmer
    10 September 2003: Added file-protocol proxy by Liu Die Yu
    10 September 2003: Added NavigateAndFind protocol history by Liu Die Yu
    10 September 2003: Added window.open search injection by Liu Die Yu
    10 September 2003: Added NavigateAndFind file proxy by Liu Die Yu
    10 September 2003: Added Timed history injection by Liu Die Yu
    10 September 2003: Added history.back method caching by Liu Die Yu
    10 September 2003: Added Click hijacking by Liu Die Yu
    9 September 2003: Re-added Re-evaluating HTML elavation
    26 August 2003: Added ADODB.Stream local file writing by jelmer
    20 August 2003: Changed latest cumulative IE patch link, MS03-032 released
    5 August 2003: Added Notepad popups by Richard M. Smith
    4 August 2003: Added protocol control chars by badWebMasters

    Source: http://www.pivx.com/larholm/unpatched/
    Reply With Quote Reply With Quote
  3. 09-16-2003, 11:05 AM Software & Hardware   -   #2
    Makaveli-tha-don
    Makaveli-tha-don is offline
    Poster
    Join Date
    May 2003
    Location
    Ennland
    Posts
    252
    Send a message via MSN to Makaveli-tha-don
    Why post twice, we can all read in one or is the other one for blind users!!!

    very nice info though
    Reply With Quote Reply With Quote
  5. 09-16-2003, 11:17 AM Software & Hardware   -   #3
    nikita69
    nikita69 is offline
    Poster
    Join Date
    Jul 2003
    Posts
    973
    it that dang pause that i get sometimes while posting, thx bot.

    what i found funny about this is when i disable "active scripting" as suggested here http://lists.netsys.com/pipermail/full-dis...ber/009917.html to avoid this vulnerability, just about any site i visited after that i got the IE message
    Reply With Quote Reply With Quote
  7. 09-16-2003, 11:35 AM Software & Hardware   -   #4
    Cl1mh4224rd
    Cl1mh4224rd is offline
    Poster
    Join Date
    Jan 2003
    Location
    Belle Vernon, PA, USA
    Posts
    638
    Send a message via ICQ to Cl1mh4224rd Send a message via AIM to Cl1mh4224rd Send a message via MSN to Cl1mh4224rd
    Damn... They're back up to 31? Last time I looked (quite a while ago, admittedly), it was down to an amazing 19...
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules

Page Generation Time
0.07
Number of Queries
12
Links: Talkgold Forum | AdServices