'Critical' flaws in Internet Explorer
Microsoft yesterday warned users of two “moderate” Windows flaws that could be remotely exploited to launch a denial-of-service attack or wipe out data. But its monthly fixes don’t cover two more holes found in its popular Web browser that could be used to compromise vulnerable machines. IT security firm Secunia of Copenhagen, Denmark calls the vulnerabilities in Internet Explorer “extremely critical” and recommends users disable active scripting support for all but trusted Web sites. “The safest thing the end user can do at this point is use an alternative browser when visiting Web sites they don’t trust,” said Thomas Kristensen, chief technology officer at Secunia. “These vulnerabilities require urgent action, but we’ll be lucky if we see an update for this next month.” Full Story