Hackers Given Keys to IE 7 Kingdom
I'm a fan of how public Microsoft is with its security flaws. Patch Tuesday is a tradition that Microsoft should be proud of -- not for the holes, but for the public fixes.
But patches are like blueprints for a hacker, who can now understand the hole and attack unpatched systems. That's what's happening with IE 7 as hackers take the hole disclosed earlier this month and go after it with gusto.
The vulnerability is that hackers can use deleted data, like the history and cookies, as a vector of attack. The fix is in; some of you might as well get it.
Posted by Doug Barney on February 20, 2009