Hours after release, Internet Explorer 7 flaw exposed

News by Frank Washkuch Jr.

Just hours after the latest version of Microsoft's Internet Explorer web browser was released, its first vulnerability was disclosed to the public.

Just hours after the latest version of Microsoft's Internet Explorer web browser was released, its first vulnerability was disclosed to the public.

The flaw in Internet Explorer 7 (IE 7), discovered today by Secunia, can be exploited by malicious users to disclose sensitive information, according to the vulnerability monitoring firm.

The flaw is caused by an error in redirection handling for URLs with the mhtml: URI handler, according to an advisory posted by Secunia today that calls the flaw "less critical."

Internet explorer was released earlier this week with the promise of increased protection from phishing attacks and other threats.

Microsoft announced in late July that it would push IE 7 for Windows XP as a high-priority security patch through Automatic Updates.

However, the company also said at the time that it would give users the choice not to install IE 7.

A malicious spoofed website was discovered this week that pretends to be from Microsoft but downloads trojans to innocent users' PCs.

Click here to email Frank Washkuch Jr.

Topics:
Crime & Threats

Find this article useful?

Get more great articles like this in your inbox every lunchtime

Upcoming event 

Webcast: Understanding this year's biggest adversaries - and how to combat them 

Nation-state activity, versatile, slippery strategies and Big Game Hunting - the threats are real, dangerous and ever changing. 
Brought to you in partnership with Crowdstrike