Firefox 'patch', IE again

Firefox has just updated version 1.5.0.7, patching 7 security holes. In contrast, Internet Explorer is facing new vulnerabilities that have been used by hackers to attack Windows computers.

Four of the seven vulnerabilities Firefox patched this time are 'critical' ratings, helping hackers to hack malicious code to manipulate victims' machines remotely. Firefox 1.5.0.7 fixed this error. Errors in JavaScript and memory corruption (memory corruption) have also been fixed.

Meanwhile, IE is facing big trouble, also about security. IE 5.01 and 6 users are affected regardless of which version of Windows is used. According to experts, the malicious code used by hackers to attack the new IE security vulnerability is now ubiquitous on the internet.

Microsoft said it was investigating the incident, and encouraged users to turn off ActiveX and active scripting controls.

The newly discovered vulnerability involves an ActiveX control error and can be exploited when a user opens a website with malicious code inserted. Symantec said hackers could take advantage of this vulnerability to remotely control a victim's computer, or make IE crash.

A French security company FrSIRT (French Security Incident Response Team) also classified this vulnerability into the 'critical' group, the most dangerous group, and confirmed all computers use 5.01 or 6 versions of IE, with any Any Windows is affected. Microsoft said that users of Enhanced Security Configuration in Windows 2003 will not have to worry.

The new vulnerability was discovered only a few days after Microsoft released September patches, including a patch version… 3 file (because the first two versions did not solve the "root" problem). .

HOANG MINH