Y'all are a bunch of wankers!

Critical security vulnerability

http://www.microsoft.com/technet/security/advisory/935423.mspx

http://secunia.com/advisories/24659/

For anyone who wasn't already aware. Unlike 99.999% of vulnerabilities, this one (which can affect the overwhelming bulk of the computing public just by visiting a webpage) was discovered in the wild first, rather than by publicity seeking white hats.

So, um, block HTML in the sidebar, mmmkay?  :-) (the last bit was just a bit of trolling)
Permalink DF 
March 30th, 2007 10:01am
Description:
A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an unspecified error in the handling of animated cursors and can e.g. be exploited by tricking a user into visiting a malicious website using Internet Explorer or opening a malicious e-mail message.

Successful exploitation allows execution of arbitrary code.

Solution:
Do not browse untrusted sites or view untrusted e-mails.

</snip>

uh? so just don't open emails or use the net?

other alternative : don't use IE/Outlook ...
Permalink $-- 
March 30th, 2007 10:21am
I'm also unsure whether sticking to "trusted" sites is enough -- countless "trusthworthy" discussion sites allow end users to inline resources.
Permalink DF 
March 30th, 2007 10:25am
the whole point of the net is that most of it is untrusted. it's a really really stupid distinction to try to make, mostly.
Permalink $-- 
March 30th, 2007 10:26am
How boring. A life lived within a circle of officially approved trusted sites. And as if no one has ever been betrayed before...
Permalink son of parnas 
March 30th, 2007 10:36am
I thought an animated cursor was the stuff that came with windows that allowed you to customize how your mouse pointer looked (blue dinosaur, yellow pointer fingers, etc).  How does the website get that installed on your machine?  They just trick you into installing a .cur file?
Permalink xampl 
March 30th, 2007 1:57pm

This topic is archived. No further replies will be accepted.

Other topics: March, 2007 Other topics: March, 2007 Recent topics Recent topics