Tech Tips Home
The Best Tech Tips And Daily Deals
Newsletter On The Internet!

Shop online 24hrs a day or call us Mon-Fri
8:30AM-4:30PM EST - 1-800-915-2088
WorldStart Tech Tip And Store Search
Email: Password: Login Remember Me
looking for freeware

Like what you see here? Subscribe to the Tech Tips newsletter!   Email: Subscribe

Two Windows XP Vulnerabilities

Thursday, December 16th, 2004 by | Filed Under: Security Help
 
Loading...


A Tale of Two Vulnerabilities

It was the best of browsers, it was the worst of browsers…

On November 17, a Danish security firm discovered two Windows XP vulnerabilities—one was with SP2 and the other with Internet Explorer6. Both were found on systems that were completely up-to-date (scary). These two exploits basically trick the security center and IE into thinking that the sites you may be viewing are completely safe. The first exploit uses special headers to fool an option in SP2 to stop potentially harmful downloadable files the exploit stops the usual security warning SP2 making the HTML code look normal and safe. The second vulnerability has to do with a JavaScript save exploit, which can fake the file extension in an HTML document in order to hide it’s own. So what does all this jargon mean? Basically that a website can potentially fool users into downloading malicious code that they think is a legitimate HTML document.

This is something that Microsoft says is diligently researching this issue and will take the appropriate action to stop any susceptibility within their programs. Until then here’s a couple things you can do to insure that your not duped by an unscrupulous html page:

1. Disable Active Script Support. You can do this from your IE interface. Simply go to Tools/Options/security/Internet then find and disable “Active Script Support”

2. Uncheck “Hide file extensions for known file types”. This needs to be done in Windows. Go to Start/Control Panel and select “Tools” from the top of the Window select “Folder options” then click the “View” tab, from there scroll down until you see the option to “Hide extensions for known file types” and make sure it’s unchecked.

3. The other thing you can do is use another browser, such as Firefox
http://www.mozilla.org/products/firefox/

This should take care of it until Microsoft comes out with a patch. This is a newly discovered vulnerability and is really nothing more than a delivery method for potential viruses. So keep your IE buttoned up tight, and you should be fine.

Stay safe out there.

~ Chad

Leave a Reply


Like these tips? Get them for FREE in your email!

WorldStart's Tech Tips Newsletter

  • Tech Tips Daily - Become a tech pro! Get the very best tech and computer help sent directly to your email every weekday!

  • Tech Tips Weekly - If you don't want our Tech Tips newsletter every day, then sign up for this weekly newsletter to get the best information of the week. Sent on Fridays.

Other Newsletters

  • WorldStart's Daily Deals - Every week, we send out great deals in our Daily Deals newsletter. Many of these deals are exclusively for our Daily Deals newsletter subscribers and can't be found with our regular specials.

  • Just For Grins - Each issue includes a couple clean jokes, some funny quotes, and a hilarious reader's story. Newsletter is sent five days a week.


Enter Email Address:

Subscribe

Your e-mail address is safe with us!
We only use it to send you the newsletters you request. It is NEVER disclosed to a third party for any reason, ever! Plus, if you decided you don't like our newsletters (don't worry, you'll love them), unsubscribing is fast and easy.

Free Newsletter Signup



Tech Tips Daily

Become a tech pro! Get the very best tech and computer help sent directly to your email every weekday!

Tech Tips Weekly

The week's best in tech and computer help. Get your issue sent to your email every Friday!

WorldStart's Daily Deals

The very best deals on the Internet! Get a new set of incredible sales every day of the week!

Just For Grins

Clean jokes, funny quotes, and hilarious comics. Sent 5 times a week straight to your email.


Subscribe


Love Worldstart? Refer A Friend!

looking for freeware
WorldStart's Premium Membership

Tip Archive


Categories:
Archives: