IE 7 security flaw

jasy

I just discover security flaw in lastest IE 7 with all updates installed on XP

some sites have pop-up banners & one of the banners lead to


here the CAB file is auto launched, instead of warning been displayed saying
ActiveX in top on IE where you have to right click & say run this... but it's
not the same case here on this site... they may be using some flaw in IE.

Can someone please also black list this domain, so IE users get waring when
visiting this site for malious code.

PA Bear

It's a Vundo hijackware variant and the machine is already infected. It got
infected because of your unsafe online practices, *not* because of a
security vulnerability in Windows.
--
~Robear Dyer (PA Bear)
MS MVP-Windows (IE, OE, Security, Shell/User)
AumHa VSOP & Admin; DTS-L.org

jasy wrote:
> I just discover security flaw in lastest IE 7 with all updates installed
> on
> XP
>
> some sites have pop-up banners & one of the banners lead to
>
>
> here the CAB file is auto launched, instead of warning been displayed
> saying
> ActiveX in top on IE where you have to right click & say run this... but
> it's not the same case here on this site... they may be using some flaw in
> IE.
>
> Can someone please also black list this domain, so IE users get waring
> when
> visiting this site for malious code.

gregpcarr@yahoo.ca

The website mentioned ia a major source of malware and viruses and it should
be removed from the WWW.

gregpcarr@yahoo.ca

this will help you get rid of
pop-ups.

jasy

No, My PC is not infected. I notice the issue when I reloaded the webpage, at
that time it asked me to either save or open the exe instead of warning
message. Today I went back to the same site it's not doing it... just shows
ActiveX warning bar on top for some "win.....cab" file. I am myself MSCE
2k/2k3, so I don't get traped in these tricks that the site plays... like
making you believe you are running spyware scan. I notice google notify you
for some virus sites before visiting. I hope IE also keeps similar database
that notify user if that site is malious similar to it's anti-phishing
feature.

Regards,

"PA Bear" wrote:

> It's a Vundo hijackware variant and the machine is already infected. It got
> infected because of your unsafe online practices, *not* because of a
> security vulnerability in Windows.
> --
> ~Robear Dyer (PA Bear)
> MS MVP-Windows (IE, OE, Security, Shell/User)
> AumHa VSOP & Admin; DTS-L.org
>
> jasy wrote:
> > I just discover security flaw in lastest IE 7 with all updates installed
> > on
> > XP
> >
> > some sites have pop-up banners & one of the banners lead to
> >
> >
> > here the CAB file is auto launched, instead of warning been displayed
> > saying
> > ActiveX in top on IE where you have to right click & say run this... but
> > it's not the same case here on this site... they may be using some flaw in
> > IE.
> >
> > Can someone please also black list this domain, so IE users get waring
> > when
> > visiting this site for malious code.
>
>

PA Bear

I beg to differ: If you're seeing pop-ups for WinAntiSpyware, the machine
/is/ infected.
--
~PA Bear [working offline]

jasy wrote:
> No, My PC is not infected. I notice the issue when I reloaded the webpage,
> at that time it asked me to either save or open the exe instead of warning
> message. Today I went back to the same site it's not doing it... just
> shows
> ActiveX warning bar on top for some "win.....cab" file. I am myself MSCE
> 2k/2k3, so I don't get traped in these tricks that the site plays... like
> making you believe you are running spyware scan. I notice google notify
> you
> for some virus sites before visiting. I hope IE also keeps similar
> database
> that notify user if that site is malious similar to it's anti-phishing
> feature.
>
> "PA Bear" wrote:
>> It's a Vundo hijackware variant and the machine is already infected. It
>> got infected because of your unsafe online practices, *not* because of a
>> security vulnerability in Windows.
>> --
>> ~Robear Dyer (PA Bear)
>> MS MVP-Windows (IE, OE, Security, Shell/User)
>> AumHa VSOP & Admin; DTS-L.org
>>
>> jasy wrote:
>>> I just discover security flaw in lastest IE 7 with all updates installed
>>> on
>>> XP
>>>
>>> some sites have pop-up banners & one of the banners lead to
>>>
>>>
>>> here the CAB file is auto launched, instead of warning been displayed
>>> saying
>>> ActiveX in top on IE where you have to right click & say run this... but
>>> it's not the same case here on this site... they may be using some flaw
>>> in
>>> IE.
>>>
>>> Can someone please also black list this domain, so IE users get waring
>>> when
>>> visiting this site for malious code.

jasy

No, My PC is not infected. I notice the issue when I reloaded the webpage, at
that time it asked me to either save or open the exe instead of warning
message. Today I went back to the same site it's not doing it... just shows
ActiveX warning bar on top for some "win.....cab" file. I am myself MSCE
2k/2k3, so I don't get traped in these tricks that the site plays... like
making you believe you are running spyware scan. I notice google notify you
for some virus sites before visiting. I hope IE also keeps similar database
that notify user if that site is malious similar to it's anti-phishing
feature.

Regards,

"PA Bear" wrote:

> It's a Vundo hijackware variant and the machine is already infected. It got
> infected because of your unsafe online practices, *not* because of a
> security vulnerability in Windows.
> --
> ~Robear Dyer (PA Bear)
> MS MVP-Windows (IE, OE, Security, Shell/User)
> AumHa VSOP & Admin; DTS-L.org
>
> jasy wrote:
> > I just discover security flaw in lastest IE 7 with all updates installed
> > on
> > XP
> >
> > some sites have pop-up banners & one of the banners lead to
> >
> >
> > here the CAB file is auto launched, instead of warning been displayed
> > saying
> > ActiveX in top on IE where you have to right click & say run this... but
> > it's not the same case here on this site... they may be using some flaw in
> > IE.
> >
> > Can someone please also black list this domain, so IE users get waring
> > when
> > visiting this site for malious code.
>
>

PA Bear

I beg to differ: If you're seeing pop-ups for WinAntiSpyware, the machine
/is/ infected.
--
~PA Bear [working offline]

jasy wrote:
> No, My PC is not infected. I notice the issue when I reloaded the webpage,
> at that time it asked me to either save or open the exe instead of warning
> message. Today I went back to the same site it's not doing it... just
> shows
> ActiveX warning bar on top for some "win.....cab" file. I am myself MSCE
> 2k/2k3, so I don't get traped in these tricks that the site plays... like
> making you believe you are running spyware scan. I notice google notify
> you
> for some virus sites before visiting. I hope IE also keeps similar
> database
> that notify user if that site is malious similar to it's anti-phishing
> feature.
>
> "PA Bear" wrote:
>> It's a Vundo hijackware variant and the machine is already infected. It
>> got infected because of your unsafe online practices, *not* because of a
>> security vulnerability in Windows.
>> --
>> ~Robear Dyer (PA Bear)
>> MS MVP-Windows (IE, OE, Security, Shell/User)
>> AumHa VSOP & Admin; DTS-L.org
>>
>> jasy wrote:
>>> I just discover security flaw in lastest IE 7 with all updates installed
>>> on
>>> XP
>>>
>>> some sites have pop-up banners & one of the banners lead to
>>>
>>>
>>> here the CAB file is auto launched, instead of warning been displayed
>>> saying
>>> ActiveX in top on IE where you have to right click & say run this... but
>>> it's not the same case here on this site... they may be using some flaw
>>> in
>>> IE.
>>>
>>> Can someone please also black list this domain, so IE users get waring
>>> when
>>> visiting this site for malious code.