gHacks Technology News | Latest Tech News, Software And Tutorials » internet explorer exploit http://www.ghacks.net A technology news blog covering software, mobile phones, gadgets, security, the Internet and other relevant areas. Sat, 11 Feb 2012 09:52:46 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 You better stop using Internet Explorer for nowhttp://www.ghacks.net/2008/06/27/you-better-stop-using-internet-explorer-for-now/ http://www.ghacks.net/2008/06/27/you-better-stop-using-internet-explorer-for-now/#comments Fri, 27 Jun 2008 08:02:27 +0000 Martin Brinkmann http://www.ghacks.net/?p=5126 A security vulnerability came to light recently that affects Internet Explorer 6, Internet Explorer 7 and even Internet Explorer 8 that can be used to record keystrokes of a user even if he is switching domains. That means that a specifically prepared website can launch some Javascript that records everything the user does afterwards including text input which naturally means usernames and passwords as well.

Sounds scary ? There is no fix for this vulnerability yet other than to disable Javascript or allow it only on trusted domains. Some researchers claim that other browsers are affected as well but have failed to deliver proof for those claims yet. It would not hurt however to use the Firefox add-on No Script for instance.

The vulnerability can be tested on this page if you visit it with Internet Explorer. It opens a new window and records the user input on that domain. There is an explanation from the same researcher available.

]]> http://www.ghacks.net/2008/06/27/you-better-stop-using-internet-explorer-for-now/feed/ 19