Vulnerability in VBScript Could Allow Remote Code Execution

Tuesday, March 2nd, 2010

Microsoft is investigating new public reports of a vulnerability in VBScript that is exposed on supported versions of Microsoft Windows 2000, Windows XP, and Windows Server 2003 through the use of Internet Explorer. Our investigation has shown that the vulnerability cannot be exploited on Windows 7, Windows Server 2008 R2, ...

Internet Explorer supports free certificates

Sunday, September 27th, 2009

With its last update, Microsoft has added StartCom to the pre-installed root certificates in its operating system. As a result, Microsoft products (such as Internet Explorer) now accept certificates issued by StartCom without prompting the user or requiring any special configurations for the certificates. Third-party programs that use the operating ...

Browser plugin blocks ad-tracking cookies

Tuesday, March 17th, 2009

A researcher has developed a browser extension that stops advertising networks from tracking a person's surfing habits, such as search queries and content they view on the web. The extension, called Targeted Advertising Cookie Opt-Out (TACO), enables its users to opt out of 27 advertising networks that are employing behavioural advertising ...

New Attack Singles out IE Flaw

Tuesday, February 17th, 2009

Microsoft warned last week that it would be easy for cybercriminals to build new attacks using bugs it patched in the Internet Explorer browser; now that prediction has come true. On Tuesday, security vendor Trend Micro said that it had spotted the first attack taking advantage of one of two flaws ...

Google’s Browser Security Handbook

Sunday, January 4th, 2009

This document is meant to provide web application developers, browser engineers, and information security researchers with a one-stop reference to key security properties of contemporary web browsers. Insufficient understanding of these often poorly-documented characteristics is a major contributing factor to the prevalence of several classes of security vulnerabilities. Although all browsers ...