IE 6 Users Warned of New Security Bug
Researchers at McAfee, a security vendor, issued a warning on June 26, 2008 that Internet Explorer 6 (IE6) contained a cross-site scripting (XSS) vulnerability that malicious attackers could exploit to intercept keystrokes and seize user credentials.
According to McAfee's Analyst, Yichong Lin, the vulnerability is a possible modification of a security flaw that researchers, Fukami and Manuel Caballero, first discussed at Microsoft Corp's BlueHat security conference in early June 2008, as reported by ComputerWorld on June 26, 2008.
In the conference, Caballero had disclosed the malicious method of intercepting every browser move, including the use of keystrokes to enter passwords. He said that Flash in combination with any browser could be hijacked with a vicious code to allo...
» SPAMfighter News - 17-07-2008