StarDestroyer.Net BBS

CmdrWilkens wrote:Opera 7:

High Risk Vulnerabilities: 0
Medium Risk Vulnerabilities : 1
Low Risk Vulnerabilities: 0

I'm still curious why it tells me to get IE 6 SP 1 when I'm not using IE and, in fact, it doesn't exist on my computer anymore.

Shinova wrote:

CmdrWilkens wrote:Opera 7:

High Risk Vulnerabilities: 0
Medium Risk Vulnerabilities : 1
Low Risk Vulnerabilities: 0

I'm still curious why it tells me to get IE 6 SP 1 when I'm not using IE and, in fact, it doesn't exist on my computer anymore.

Thats probably cause your opera's configured to identify itself as IE 5.

Microsoft Internet Explorer IFRAME dialogArguments Cross-Zone Access Vulnerability (bid6205)
Description
This bug allows a web site to read the contents of any file on your computer. The web site has to know the exact path and name of the file. A malicious website may also be able to exploit this vulnerability to delete mail from your webmail account or to spoof trusted websites.

Update: A way was discovered to use bugs like this one to run locally installed programs with parameters. That means that a malicious web site can use this bug to perform any actions on vulnerable computer, such as, for example, delete files, install programs, etc.

Recommendations
No patches are available for this problem yet. Possible workaround is to disable Javascript

Dalton wrote:Holy shit!

MSIE:

High Risk Vulnerabilities 2
Medium Risk Vulnerabilities 2
Low Risk Vulnerabilities 1

Mozilla:

High Risk Vulnerabilities 0
Medium Risk Vulnerabilities 0
Low Risk Vulnerabilities 0

I love Mozilla.

Einhander Sn0m4n wrote:Comments: The test was slow and opened a shitload of popups as well as several file-download boxes. One popup was uncloseable to the point of needing forcible termination with CTRL-ALT-DELETE.