News

Internet Explorer "Cookie Jar" Vulnerability Discovered

A vulnerability has been found in Microsoft's Internet Explorer that exposes cookies used by many major Web sites to track user information and traffic, according to Peacefire.org.

The vulnerability involves typing a special URL into the browser that confuses it and makes it act as though it is reading the section of the site that initially distributed the cookie. Because cookies are stored as plain text files, the vulnerability could give a malicious user access to a person's vital information, credit card numbers, and passwords.

All versions of Internet Explorer for Windows 95, 98, and NT are known to be affected, while the Macintosh and Unix versions appear safe at this time. The vulnerability is not known to affect Netscape browsers.

Peacefire.org recommends disabling JavaScript functionality in Internet Explorer as the most effective workaround for this vulnerability. - Isaac Slepner

About the Author

Scott Bekker is editor in chief of Redmond Channel Partner magazine.

Featured

  • Microsoft Joins Amazon, Google, OpenAI and Other Tech Giants in AI Safety Pledge

    Over a dozen companies at the forefront of today's generative AI boom have agreed to a set of "AI safety commitments" as part of last week's AI Seoul Summit.

  • Image of a futuristic maze

    The 2024 Microsoft Product Roadmap

    Everything Microsoft partners and IT pros need to know about major Microsoft product milestones this year.

  • SharePoint Embedded Becomes Generally Available

    After a six-month preview, SharePoint Embedded, an API-based version of SharePoint that developers and ISVs can use to embed Microsoft 365 capabilities into their apps, is now generally available.

  • Copilot in Microsoft 365 Getting Agents, Extensions and Team (Not Teams) Support

    Microsoft is adding more functionality to its Copilot AI assistant aimed at improving business collaboration, processes and workflows for Microsoft 365 users.