New security holes found in Internet Explorer
Two separate security holes were found in Microsoft's Internet Explorer this week, one in Internet Explorer 7 and another in Internet Explorer 6. The vulnerability in IE7 was discovered by "sirdarckcat" and is detailed at security firm Secunia's website. Rated as moderately critical, it can be exploited to perform spoofing by autonomously switching the location of another frame. The IE6 vulnerability, on the other hand, can be used by an unauthenticated attacker to execute code in the security context of another domain. Microsoft says that it is currently investigating both reports, and is not aware of any attempts, at the moment, to exploit them.
To read up more the two Internet Explorer vulnerabilities:
- check out this eWeek article