[Tfug] Help with IE security presentation please
Robert Zeigler
rdzeigle at u.arizona.edu
Fri Nov 7 22:57:34 MST 2003
For the security risks portion, try the bugtraq at securityfocus.com
mailing list archives and similar security forums. There was an
interesting thread on bugtraq recently regarding a 6 steps to arbitrary
code executiong via web page viewing with IE. It used a combination of
holes (the oldest of which is nearly 2 years old... and still no patch
for it...) to create the exploit.
bugtraq archives:
http://www.securityfocus.com/archive/1
the aforementioned 6 step attack PoC:
http://www.securityfocus.com/archive/1/343464/2003-11-05/2003-11-11/0
Casey Townsend wrote:
>I have been asked to do a presentation to management on the security risks of IE 5, 5.5 & 6sp1; what the alternate browser situation is; and to opine on what the future holds. If anyone has any current or concise info I'd appreciate it if you would share it with me. I'm especially interested in the Javascript compatibility issue since both the City and the County run Autodesk's MapGuide for a lot of our maps and GIS work and it requires IE for full functionality.
>
>TIA,
>
>Casey Townsend
>
>
>_______________________________________________
>tfug mailing list
>tfug at tfug.org
>http://www.tfug.org/mailman/listinfo/tfug
>
>
More information about the tfug
mailing list