News - More holes found in Microsoft's Internet Explorer browser

[HEXUS]

Microsoft investigates as U.S. security firm claims vulnerabilities in Internet Explorer still exist.

Read more.

[Terbinator]

In other news, Grizzly Adams does indeed have a beard - who'd of thought.

[dangel]

I'm going out on a limb - i'm going to claim vulnerabilities in Internet Explorer, Firefox, Chrome, Opera still exist. Hell, all of them.

[razer121]

In other news, Grizzly Adams does indeed have a beard - who'd of thought.

lol wtf?? haha

[Yosh]

lol wtf?? haha

Terbinator is pointing out the obvious, and quite rightly.

Do we really need a company to tell us another companies browser has holes?

[watercooled]

What? More security holes in IE? Well I never!! Nothing surprising really, you're almost guaranteed there will be an IE patch included at least every patch Tuesday...

[Temi_D]

I don't get why all the spotlight is on IE8 bugs. All other browsers are just as bugged, if not more

[Terbinator]

I don't get why all the spotlight is on IE8 bugs. All other browsers are just as bugged, if not more

Because IEX has the most users/market share.

[watercooled]

At least other browsers' bugs generally get patched ASAP, MS usually wait until the next patch Tuesday (once per month) unless it's very serious when they will occasionally release an out-of-cycle patch. Also IE vulnerabilities tend to be far more serious than those of other browsers. If you listen to a security pro run you through the reasons why IE should be avoided I'm sure you'd understand.

[aceuk]

When you're using IE7/IE8 on Vista/Windows 7, users would still get prompted by UAC to install the malware/spyware if it used a vulnerability in the browser.

[Lanky123]

When you're using IE7/IE8 on Vista/Windows 7, users would still get prompted by UAC to install the malware/spyware if it used a vulnerability in the browser.

Unless they've had the local computer 'expert' turn that 'annoying UAC thingy' off when they got the computer. But then I guess some people just cant be helped.

[TheAnimus]

Also IE vulnerabilities tend to be far more serious than those of other browsers. If you listen to a security pro run you through the reasons why IE should be avoided I'm sure you'd understand.

I'm sorry my bullcrap-o-meter hit 11, please excuse me whilst I fix it.

[Singh400]

I'm sorry my bullcrap-o-meter hit 11, please excuse me whilst I fix it.

Learn not to bite, it is wasted breath mate.

[dangel]

MS' patch cycle isn't dictated by lazyness - it's simply a product of what customers want: predictable release cycles which give them time for testing. This is massively important in the corporate environment.

[badass]

If you listen to a security pro

Evidently someone you have never talked to!

[watercooled]

Well you certainly haven't evidently. And actually I have, plenty of them believe me - people who actually do it for a living not just people who read some random crap on the Internet and assume it to be true. And I'm almost certain I know more about computer security than you TBH so go think about what you're saying before posting... Yeah IE can be configured so it's more secure, even more than Firefox possibly but out of the box which is how most people are going to use it it's just awful. And when you do lock it down it loses so much functionality, so much so it barely still works as a browser. Not to mention that most web malware/zero-day exploits are aimed at IE and wouldn't even run on Firefox, due to IE having a higher market share. ActiveX is frankly just an awful idea, I mean before IE7 it would just run ActiveX controls without even asking you so browsing a site with a dodgy ActiveX element meant game over for your computer really. Yeah things got better in later releases but it's still there, enabled by default and just never used by most users.
@aceuk - not necessarily, in theory yes but not always in practice.
@Lanky123: Yeah I completely agree with you there and it's funny you should say that - I've just checked my youtube subscriptions and guess what I found: http://www.youtube.com/watch?v=UpfdgnaS4ZE&feature=sub
@TheAnimus: The same goes for you, anyone who thinks IE is secure is badly mistaken. It's not necessarily the fault of the browser, it's often because it takes so long for a patch to be released and every second counts really. Steve Gibson is one name that springs to mind who you might know, you know, the guy who first detected spyware and named it. Oh yeah everything seems fine and nice and secure until you actually learn more about it. Just how people think Macs and Linux are virus proof and they don't need to worry about malware while using them so they don't bother to think about what they're doing. In reality it's not much harder to infect a Mac/Linux box than it is Windows. No, other browsers aren't perfect either but I can't think of anything worse than IE.
@dangel: Oh yeah I understand that, but there's no denying holes do get patched far faster in the likes of Firefox. This of course means that holes are actively exploited for days or even weeks before a patch is released.
And last and certainly least, Singh400 and badass: You just decided to take this as an opportunity to listen to others and be asses did you? I don't get the feeling from your posts you even know what an exploit is so go and troll somewhere else...
I could give you an essay as to why I wouldn't use IE for my everyday browsing but frankly I have better things to do with my time. If you want to know there's plenty of resources out there which you could do with reading...