'nuf said
ANOTHER vulnerability in Windows/IE. You couldn't make it up!!!!
Microsoft has begun investigating a flaw in IE that most affects older versions of Windows, and turns vulnerable systems into a "public file server". The vulnerability means that hackers might be able to access files with an already known filename and location, providing they can trick users into visiting a maliciously …
..is one way of describing it and of course being able to get key files from the directory structure (which being Windows will, in 99.9% of cases be c:\windows) isn't really a problem is it?
I mean being able to run off with things like the remembered form values and passwords from IE isn't really an issue is it......
How many people will have stored important info in files called passwords.txt or passwords.doc in their home directory.
If the exact filename and path is needed, this should mean your Documents are safe as the hacker will need to know your username to locate C:\Docs n Settings\Username\My Documents\passwords.txt
BUT... this surely means it is trivial to locate programs in the Windows folder. Like the registry files in c:\windows\system32\config\.
Is this also the same bug where the executables are usable? Did I read the demonstration ran c:\windows\calc.exe? As that would be a pain as C:\windows\regedit.exe is in the same place on everyone's windows PC.
Ah... of course... it is just a ploy to get everyone to upgrade from XP to Win7.
You may laugh, but I already tried that already (MS Virtual PC), and apart from dire colour resolution, there's no 16 bit browser available that can handle any of the current web technologies. The 'old' browsers either hang or can't render code properly. With a higher colour resolution and a capable browser 3.11 would be a great portable web OS