Linux Today: Linux News On Internet Time.
Search Linux Today
Linux News Sections:  Developer -  High Performance -  Infrastructure -  IT Management -  Security -  Storage -
Linux Today Navigation
LT Home
Contribute
Contribute
Link to Us
Linux Jobs


More on LinuxToday


Why the Latest IE Flaw Proves Linux Got it Right From the Start

Dec 23, 2008, 18:31 (4 Talkback[s])
(Other stories by David M Williams)

"While that doesn't tell us much, the knowledge base article (or "KB") 960714 referenced does spill the beans.

"Fundamentally, it was discovered that program code -- of a malicious person’s construction -- be executed on your computer, if a user views a specially crafted web page with IE.

"In particular, a rogue script can allocate a block of memory (an array) then apparently release it without updating the array's length, meaning that the block of memory still remains preserved.

"Then, if data binding is enabled (which it is, by default), a rogue web page can take advantage of an incorrect handling of certain XML tags within IE to cause the browser to pass control to the supposedly free memory location."

Complete Story

Related Stories: