Site Network: | | Jongsma & Jongsma

Security for All

Sûnnet Beskerming is a company with a focus and a drive to provide Information Security services for all those who want to stay safe and secure in an online world.

Username: | Password: Contact us to request an account

Internet Explorer - Remote hacker automatic data theft

Version: 7.x and prior.
Technical Details:

Race condition in at least IE 6.x and 7.x, which can be exploited by an attacker using JavaScript to arbitrarily change content on sites opened from a malicious web page. This includes cookie modification and may lead to browser crashes (memory corruption) if DOM content that has not been initialised is accessed.


A serious vulnerability in the Internet Explorer Internet browser has been discovered and disclosed to a number of security sources. This vulnerability will allow a remote attacker to modify content displayed by the browser for sites opened from a malicious site. This can also be used to modify cookie content and may also lead to a browser crash.


Disabling Active Scripting support in the browser should prevent the exploit from working, given that it requires the use of JavaScript to function. Alternatively, consider running IE from a less-privileged account (though there are still risks), or consider the use of an alternate Internet browser.


Not Yet Available



External Tracking Data:

Not Yet Identified

Social bookmark this page