Browser Security News

Hackers are taking advantage of a newly discovered vulnerability in Internet Explorer to install spyware on PCs that visit a number of Russian porn sites. The malware, first reported Monday by researchers at Sunbelt Software Inc., takes advantage of an unpatched flaw in the way IE processes Vector Markup Language (VML) code. VML is a […]

Microsoft’s implementation of the Vector Markup Language rendering engine has a vulnerability that could lead to a buffer overflow and execution of arbitrary code.
Sunbelt Software’s Eric Sites, VP for research and development, posted about an in-the-wild exploit affecting Internet Explorer. The flaw allows for exploitation of a fully-patched system, triggered by visiting in their example […]

[tag]Mozilla Corp[/tag]. has hired a former Microsoft security strategist to help secure its open-source software, particularly its Firefox browser.
[tag]Window Snyder[/tag], whose hiring was announced last week, takes the title of "Chief Security Something" — that’s a working title, and not all that unusual for a company headed by someone who once held the title of […]

The syndication format’s vulnerabilities must be addressed before [tag]IE 7[/tag] and [tag]Vista[/tag] come out. As we here at eWEEK Labs evaluate the next generation of Web browsers, operating systems, collaboration tools and other interactive applications, one feature keeps popping up again and again—namely, integration with [tag]RSS[/tag] feeds.
RSS integration has already pretty much become a must-have […]

As you might already know - it is important to use the latest versions of [tag]IE7[/tag] to get the benefits of all the changes we have made over the past year since the release of the first public beta.
We made improvements to the client based on feedback and want to ensure users use these […]

Ever since Netscape took on Mosaic in 1994, companies have been duking it out for domination in the browser marketplace. We relive the biggest and best of the great browser battles. In the beginning was WorldWideWeb. Developed by Tim Berners-Lee, the world’s first Web browser was developed on and written specifically for the NeXT platform […]

Although I strongly oppose censorship of any kind, the sad reality is that allowing employees to freely surf the Internet is a really bad idea. Casual surfing can lead to malware infections, litigation and increased support costs. As such, it is probably a good idea to put some controls in place to help limit what […]

A researcher posted a vulnerability against [tag]IE6[/tag] yesterday that uses random input to create a heap overflow in a [tag]Direct Animation[/tag] object. Our team is testing a security update right now to fix this overflow, but in the meantime you can keep your systems safe from this vulnerability by disabling ActiveX controls in the internet […]

Mozilla has sent out an update to [tag]Firefox[/tag], designed to address seven security flaws in the open-source Web browser. [tag]Firefox 1.5.0.7[/tag], released Thursday, tackles a problem that lets outsiders run code remotely and aims to improve the product’s stability. Of the seven vulnerabilities fixed, four are rated "critical" by Mozilla. The new browser version addresses […]

[tag]AOL[/tag] Thursday slipstreamed a security update to users of the Internet provider’s browser to fix a bug that Microsoft patched back in June.
According to an alert posted by Reston, Va. security company iDefense Inc., [tag]AOL’s browser[/tag] uses a flawed method to render compressed images in the .art format. An attacker can exploit the bug by […]