Another Week Goes by and Internet Explorer Users Still Ripe for Hijacking

Dr. Roy Schestowitz

2009-11-29 15:44:14 UTC
Modified: 2009-11-29 15:44:14 UTC

Summary: Microsoft leaves Internet Explorer users high and dry for weeks, having not addressed a zero-day flaw that compromises the entire operating system

LAST week we wrote about the Internet Explorer zero-day flaw -- a flaw which Microsoft has not resolved yet. IDG writes:

Hackers working on the open-source Metasploit project have spiffed up a zero-day attack on Microsoft's Internet Explorer, making it more reliable -- and more likely to be used by criminals.

Security experts have been worried about the flaw since it was first disclosed on the Bugtraq mailing list Friday. But the original demonstration code was unreliable and has not been used in real-world attacks.

But then came this IDG report, an advisory (not the same as patch), and SJVN wrote:

Earlier this week Microsoft announced yet another IE (Internet Explorer) bug. This one, Microsoft Security Advisory 977981, is one of the really bad ones that can allow attackers to take your Windows PC over. Yuck!

[...]

I think your best move to keep the world from sneaking in some malware over your browser is to get the latest versions of Firefox 3.5.5 or Google's Chrome 3.0.x Web browser. Neither is perfect, but they are better than IE. I wish I could recommend Opera, but I continue to have real concerns about Opera's built-in Web server security.

Indeed, this is an opportunity to recommend that people secure themselves by moving to another Web browser. Microsoft Thurrott does Microsoft's "damage control", having previously incited people against rival Web browsers like Opera. Other coverage includes:

● Exploit code targets Internet Explorer zero-day display flaw

● New Security Flaw Hits Internet Explorer 6 & 7

● New attack targets weakness in Internet Explorer

● Microsoft Issues Internet Explorer Security Advisory

This is pretty serious.

Microsoft on Monday said it is investigating a possible vulnerability in Internet Explorer after exploit code that allegedly can be used to take control of computers, if they visit a Web site hosting the code, was posted to a security mailing list.

No report about a patch has been published yet. So, a good solution would be abandonment of Internet Explorer. ⬆

Smelling an opportunity

Beehiiv and Substack Are Platform Lock-in (Similar to Vendor Lock-in), Don't Use Beehiiv and Substack (and the Likes of These): Proprietary platforms are a problem. Some people "get it" sooner than others.
Jim Zemlin/Linux Foundation Selling Anthropic Slop After Getting Bribed for Slop Marketing ('Linux' Foundation is a Pay-to-Say For-Profit Marketing Company That Buys and Manipulates the Media Based on False Pretences): Look what they've done to Steven Vaughan-Nichols (SJVN)
The Corrupt Lecture the Non-Corrupt - Part XX - EPO Management's Unified (One) Voice or Policy is, Doing Cocaine is OK When You're a Friend and/or Family of President Campinos: The management needs to resign to save the Office
If IBM Suddenly Vanished in the 1980s, There Would be Chaos. Not Anymore.: IBM's management has rendered IBM more irrelevant than ever before
Gitlab is in Trouble and Its Shares Have Collapsed: Down almost 80% since it began [...] The real issue has nothing to do with slop, it is a lack/loss of customers and erosion of the company's theoretical "value"
Microsoft: Mass Layoffs Are "Offers" (Like "Job Offers"), Culling Experienced and Highly-Paid Staff is "Softer Workforce-reduction Strategy": Media sites that play along with those lies don't do journalism, they're in the PR industry
Under IBM, Mass Layoffs at Red Hat No Better Than Oracle Under Larry Ellison (Treating Workers Like Disposables - Even Enemies - Overnight): under IBM the respect for the worker (or peer) does not exist
The Slop-Amplified Fear of Privilege Escalation (Local, Not Remote) in Linux, the Kernel: we are meant to assume this is no better and no worse than Microsoft intentionally putting back doors in everything, even encryption
GitLab the Latest Company to Do Mass Layoffs and Use Slop as the Go-to Excuse (GitLab Users Should Worry Too): This round of layoffs (disguised as something else) has nothing to do with slop ("hey hi"). It's about commercial problems.
Technology Not Meant to Last: A society apathetic towards declining production (or manufacturing) standards will end up ripped off
statCounter Cannot 'See' Chinese Operating Systems That Gain Many Millions of Users Per Month: There is no way for statCounter to recognise or show the market share of HarmonyOS
SLAPP Censorship - Part 74 Out of 200: The Basis of My Lawsuit Against Alex Graveley, Who Helps Garrett Stack the Docket in Another Continent: claim against the Serial Strangler from Microsoft
Update on Slop About "Linux": "Linux" is a term many people are interested it, so it's not shocking that slopfarms target it
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Monday, May 11, 2026: IRC logs for Monday, May 11, 2026
GAFAM (Microsoft) "Cloud Computing" Means Another Country's Military Accesses All Your Data: reminder that confidentiality and Clown Computing are complete opposites
Another Discrimination Lawsuit Against IBM and Workers Say IBM Culls Older Workers (Just Like Microsoft): If IBM fails to retain some of the smartest people, then what is the future of IBM?
Gemini Links 12/05/2026: Android Nostalgia and Switching to Guix: Links for the day
Links 11/05/2026: Another Oracle Setback and Mass Layoffs in Iran: Links for the day
Gemini Links 11/05/2026: Older Can Be Faster and Textmode Workflow: Links for the day
Links 11/05/2026: The Solicitors Regulation Authority (SRA) Admits It Only Reacts When It's Too Late (Damage Already Done), Ombudsman’s Animal Cruelty HK Report: Links for the day
If It Takes You a Second to Serve (or Receive) a Page, That's Definitely Too Slow: For speeds at milliseconds (e.g. for pages to fully load in a tenth of a second) the pages must be ready to be sent as soon as they're requested
It's Not About Speed, It is About Patience and Adherence to Truth, Principles, Scientific Integrity: attacks on us only ever made us stronger - a lesson that our adversaries have learned the hard way
Cyber Show Does it Like Techrights: Static and Gemini Protocol as 'First-Class Citizen': HTML and GemText (over Gemini Protocol) would be rendered in tandem
Libya's Share on the Web: 5.2% GNU/Linux: GNU/Linux has hit an all-time high there
SLAPP Censorship - Part 73 Out of 200: Microsoft's Graveley and Garrett Remain Closely Connected in May 2026 ("Tag-Teaming" Against Bloggers in Another Continent): The phrase "judge a person by their friends" seems applicable here
Codecs and Software Patents - Part VI - The European Patent Office, Nokia, Microsoft, Sisvel, and More: Whatever Nokia used to be, it's certainly not an ally and a lot of the turmoil at the EPO is the fault of companies like Nokia
Discussions About When the Axe Falls at IBM/Kyndryl (11,000 Layoffs Estimated): "Kyndryl restructuring should reduce overhead functions and reduce the number of managers that lack technical knowledge"
A World After Microsoft (and GAFAM) and After GitHub Shuts Down: the only growth area is debt
Fake News, Propaganda, and Misinformation: Microsoft Investing Money It Does Not Have in "Hey Hi" (for "Entertainment Purposes" Only): This will not end well
Today the Whole European Patent Office (EPO) is on Strike and Next Monday an Even Bigger Strike: the media refuses to cover these and is thus complicit
The Corrupt Lecture the Non-Corrupt - Part IXX - EPO Management Speaks of Reputation and Integrity While Putting Cocaine Addicts in Management: If the EPO values its "reputation", then it needs to start by ousting the management
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Sunday, May 10, 2026: IRC logs for Sunday, May 10, 2026
Links 11/05/2026: Security Breaches, Politics, and Energy Crunch: Links for the day
Gemini Links 10/05/2026: "Accidental Cameras" and "Addictive" Interfaces in Social Control Media: Links for the day
Codecs and Software Patents - Part V - A Reminder That GAFAM and the European Patent Office (Which Serves American Monopolists) Do Considerable Harm to the Commons and Culture: some 'breaking' developments
Gemini Links 10/05/2026: Inkscape, Guix, and Alhena 5.5.8: Links for the day
The "Alicante Mafia" at the European Patent Office (EPO) Experiments With New Methods for Crushing Industrial Actions: Open letter to VP1 and the COO [...] What does this tell us about the status quo at the European Patent Office, Europe's second-largest institution?
The Corrupt Lecture the Non-Corrupt - Part XVIII - "The European Patent Office (EPO) has a zero-tolerance policy for fraud" (except when managers do it): The guidebook of the EPO says fraud is not to be tolerated, but who enforces or revisits such "Red Lines"?
Links 10/05/2026: Hantavirus Brings Back 'Contact Tracing' Surveillance, "Staple Food Prices Soar in Iran": Links for the day
Microsoft XBox Staff Know They're in Trouble, They Try to Unionise Ahead of Mass Layoffs: As the slang goes, it's going to be a "bloodbath"
Links 10/05/2026: Fake Suicide Notes and New EU Restrictions on Slop: Links for the day
SLAPP Censorship - Part 72 Out of 200: Microsoft's Graveley and Garrett Signed Documents That Hold Them Accountable to Truth and Liable for Lies: Such collaborations are unsavoury and apparently unprofessional, too
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Saturday, May 09, 2026: IRC logs for Saturday, May 09, 2026
Gemini Links 10/05/2026: Travelling to Van and "Dark Mode" as Passing Fad: Links for the day

Another Week Goes by and Internet Explorer Users Still Ripe for Hijacking

Recent Techrights' Posts