Home › News › Industry News

codeBase vulnerability notes

On May 10, 2003, 12:27 PM

Over on Pivx Solutions they've made a post regarding the codeBase vulnerabilities in Internet Explorer, something which has been at the root of multiple vulnerabilities in the browser over the years. Here's a small portion;

quote:
Microsoft have to realize that the current tight integration of innocent browser-level functionality cannot peacefully coexist with the application-level functionality (such as executing commands & reading files) that local zones expose. The Internet Zone & Local Zones should not both be exposed through Internet Explorer. In fact, I would recommend that Local Zones should be severely crippled in the short term, & completely removed in the long term. Everything that application-level Local Zone documents & help files require can already be accomplished through the use of HTML Applications - which have already existed for years as well.

Would you like to know more? It's a pretty interesting read if you're into this sorta thing. On a related note I'll have a decent update for the Internet Explorer section of our Securing Windows guide soon enough.

No tags on this story

Next Article: Nvidia sees revenue up, NV35 next week

TechSpot on:

Most Popular

Trending

Featured

Featured on Mice

Downloads and Drivers

World of Warcraft Patch 5.3.0

Funny Photo Maker 2.4.1

More Downloads

Latest Discussion

No monitor signal 70 replies on Audio and Video

Erase file with too long file name 11 replies on Windows OS

Zotac gtx 660 fan problem 5 replies on Audio and Video

Battlefield 3 DLC 8 replies on Gaming

Overclocking i7-3770k, question about speedfan 6 replies on Overclocking, Cooling and Modding

More Recent Discussion

Subscribe to TechSpot

Get free exclusive content, learn about new features and breaking tech news.

TechSpot

Welcome to TechSpot

Home › News › Industry News

codeBase vulnerability notes

Next Article: Nvidia sees revenue up, NV35 next week

Post a new comment

TechSpot on:

Most Popular

GeForce GTX 780 Review: The Titan Descendant

OCZ Vertex 450 Review: Vector-like Performance For Less

Xbox One: Entertainment hub first, gaming console second - but can it disrupt TV?

Apple claims Samsung violates Siri patents with Google Now

Study suggests majority of Windows 8 users ignore Metro apps

AMD A4-5000 Review: Kabini, the mainstream APU

OCZ Vertex 450 SSD Review

Nvidia GeForce GTX 780 Review

Xbox One: Entertainment Hub First, Gaming Console Second -- But Could It Disrupt TV?

Metro: Last Light Performance, Benchmarked

Featured on Mice

84 Razer DeathAdder Respawn 3500dpi v2

87 Logitech Gaming Mouse G400

83 Logitech G500

81 Razer Naga Hex

90 SteelSeries World of Warcraft Cataclysm MMO Gaming Mouse

Downloads and Drivers

Latest Discussion

Subscribe to TechSpot

Featured Tech Content - Inside TechSpot

	Social Login & Guest Posting Post as anonymous user			TechSpot Members Login here or sign up for free, it takes about a minute.
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.