Internet Explorer Exposes Sensitive Information

By Thomas McGuire on June 15, 2003, 5:00 AM
A vulnerability has been identified in Internet Explorer, which exposes sensitive information to "msn.com" & "alexa.com".

While this is a known "feature" when the "Show Related Links" option is activated in Internet Explorer, there is a bug, so that Internet Explorer will keep transmitting the information to "msn.com" & "alexa.com" after "Show Related Links" has been de-activated. This occurs whenever "Ctrl+R" is used to reload a page.

To make matters worse, it has been confirmed that this behaviour also affects SSL enabled pages. 1 thing is that Microsoft has chosen to make a "feature", which reveals this information to "msn.com" & "alexa.com", but the fact that information, which was supposed to be protected by SSL & sent only to 1 site, is sent in plain text to a third party ("msn.com" & "alexa.com") is of great concern.

Would you like to know more?




User Comments: 4

Got something to say? Post a comment
Phantasm66 said:
And its another great triumph for Microsoft security! ;)
poertner_1274 said:
Heh, another reason I don't use IE.
iss said:
"alexa" is nothing more than spyware. I removed that IE browser "plug-in" a long time ago.
DigitAlex said:
AdAware and Alexa is OUT !!
Load all comments...

Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.