On CBS MoneyWatch: 5 Best College Towns to Live In
BNET Business Network:
BNET
TechRepublic
ZDNet
TalkBack 17 of 34:
Next »
« Previous
The exploits are scripting related
(hate this limited levels of a thread here)

Do some research on them that dates after 2000. And consider that none of this will run if all scripting, including Javascript, is disabled in the restricted zone and that restrictions on external frames and iframes are in place too. Also, many of the ancient exploits you mention are also cured by using the Sun JVM (something you have to do anyway with recent XP installs).

Also, the Outlook address book is locked down rather firmly these days. Most newer trojans don't even bother with it since it is a common 'tripwire' in detecting them. Instead, they go after the browser cache and other places to harvest addresses.

Spoofed addresses are a concern. So far, the spoofed items that have come in have been stopped because they have executables in them or are known viruses.

As I've said, don't dwell on the past vulnerbilities of scripting inside of documents or email, virtually all of these problems today are handled in any well run corporate network. The real areas of risk right now are in IE itself running in the 'Internet' zone and therefore open to ActiveX exploits and trojans/scumware that latch onto IE through intentionally downloaded and installed software. These are a lot more sophisticated than the 'script kiddie' stuff you keep bringing up.
Posted by: jfrankcarr   Posted on: 03/20/04 You are currently: a Guest | Members login | Terms of Use
Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

blah  carbon-12 | 03/19/04
does anyone see a correlation?  stephen732@... | 03/19/04
One train, just switch to Linux  FilledOut | 03/19/04
Costs too much  jfrankcarr | 03/19/04
your forgetting something  stephen732@... | 03/19/04
That is a consideration  jfrankcarr | 03/20/04
RE: That is a consideration  nite_w0lf | 03/20/04
Delegating virus software  jfrankcarr | 03/20/04
2000/05/28:Microsoft Applications Security And The Internet  David Mohring | 03/19/04
Pretty dated information there.  jfrankcarr | 03/19/04
If anything, its worse - Phishing for IE vulnerabilities  David Mohring | 03/19/04
Have to somewhat disagree based on my experience  jfrankcarr | 03/20/04
a laptop solution  Iain_Peters | 03/20/04
Do you plan on collecting your bonus anytime in the future?  David Mohring | 03/20/04
You're still talking about 2000 era threats  jfrankcarr | 03/20/04
Did you even bother to read what I wrote?  David Mohring | 03/20/04
The exploits are scripting related  jfrankcarr | 03/20/04
So how much does Windows really cost???  DonnieBoy | 03/19/04
Still think M$ has a lower TCO?  carbon-12 | 03/19/04
TCO THIS!  spinit | 03/20/04
If Everyone Used Linix == Same problems  lslade | 03/20/04
RE: If Everyone Used Linix == Same problems - rubbish  Iain_Peters | 03/20/04
RE: If Everyone Used Linix == Same problems - rubbish  seosamh_z | 03/21/04
The problem is when MSCEs talk *nix security  Richard Flude | 03/21/04
IIS vs Apache  doe_z | 03/20/04
Linux CAN be made secure relative to Windows...  deathbymilkfloat | 03/20/04
Linux CAN be made secure relative to Windows...  seosamh_z | 03/21/04
just out of curiosity, how did you ever find your way onto the net!  nite_w0lf | 03/20/04
If Everyone Used Linix -- Execute bit  SilverEagle_z | 03/27/04
TCO! TCO! Get The Facts! TCO!  B_HI | 03/20/04
Mindless Sheep?  TWRX | 03/20/04
Stupid response to a stupid post?  ZorakQMantis | 03/21/04
And the viruses are spreading to automobiles  Squawkbox | 03/20/04
and where do we get these figures  JWatson77 | 03/24/04

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement
advertisement

SmartPlanet

Click Here