CONSUMER NEWS RECALLS COMPLAINT FORM SCAM ALERTS

Small Claims Guide \| Class Actions \| Lemon Law \| FAQ \| Resources \| Newsletters \| Spanish
Automotive Education Electronics Family Finance Health Homeowners Shopping Travel

Flaw in Microsoft Explorer Endangers Data

November 26, 2003
A newly-discovered security flaw in Microsoft's Internet Explorer 6.0 could allow malicious Web sites and viruses to take control of the user's computer, possibly gaining access to confidential data.

The discovery was made by a researcher in Copenhagen, Denmark, Liu Die Yu, who said the problem combines "multiple 'minor' vulnerabilities" and "are as simple to exploit as the three-month-old Object Data vulnerability, which was exploited by several spam mails and pornographic Web pages."

Microsoft has not yet addressed the problem.

There are two actions consumers can take immediately to protect themselves:

Use a different browser; or
Disable "active scripting" in Internet Explorer.

"Realistically, for the average consumer who is not very interested in computers, the safest option is to use a different browser. There is no reason for people to subject themselves to the loopholes, backdoors, oversights and other shortcomings that accompany Internet Explorer and the equally reprehensible Outlook Express," said ConsumerAffairs.com president James R. Hood.

Alternative Browsers

There are three excellent, secure, free browsers readily available, Hood said. Any of them can be downloaded and installed in minutes. They are:

Mozilla Advertising-free, highly secure and easy to install, Mozilla includes pop-up blockers, multiple window capability and many other advanced features. A top-notch email program is included.
Opera A very fast and economical (in terms of program size) browser with an easy-to-use email program, the free version of Opera displays a single banner ad. The paid version is ad-free and goes for $39.
Netscape Navigator This is basically the commercial version of Mozilla (above). It's free but comes from the AOL-owned Netscape Communications Corp. and all that that entails.

Disable Active Scripting

For those unwilling to give up their Microsoft browser, it's possible to disable "active scripting" in IE 6.0 (to find out which version you have, click on "Help/About Internet Explorer"). Warning: This fixes the latest vulnerability but does nothing about the ones that haven't been found yet. Also, many Web sites won't display properly if you disable active scripting.

Here's how to make IE 6.0 a little bit safer, at least for now:

Open Tools/Internet Options/Security
Go to the "Internet" channel/Custom Level
Scroll down (way down) to Scripting/Active Scripting
Click on "Disable"
Click the "OK" button.

A Microsoft executive said the company is aggressively investigating the public reports."

July 5 2008

Print, mail, etc.

FREE CONSUMER NEWSLETTERS

The Daily Consumer
Afternoons M-F
Sign up now!

Consumer News & Alerts
Every Sunday
Sign up now!

Knowledge is free.
Knowledge is power.

Back to the top | News

Terms of Use Your use of this site constitutes acceptance of the Terms of Use

Advertisements on this site are placed and controlled by outside advertising networks. ConsumerAffairs.com does not evaluate or endorse the products and services advertised. See the FAQ for more information.

Company Response Welcome If complaints about your company appear on our site, we welcome your response. Please see the Response Form for more information.

For more information, see the FAQ and privacy policy. The information on this Web site is general in nature and is not intended as a substitute for competent legal advice. ConsumerAffairs.com Inc. makes no representation as to the accuracy of the information herein provided and assumes no liability for any damages or loss arising from the use thereof.