Security Flaw Leaves All Microsoft Internet Explorer Users Vulnerable

CYBERSPACE — A new security hole affects all versions of Microsoft's Internet Explorer, leaving users of the leading web browser vulnerable to attack on a wide array of compromised websites.

Two online security firms have reported that hackers have broken in an unspecified number of websites and added malicious code that exploits the vulnerability in MS IE. Once installed, the virus starts stealing sensitive user data.

Online security firms Security Fix and SANS Internet Storm Center both reported on the vulnerability, which is linked to a specific file associated with MS IE. Microsoft also released an advisory, saying that the vulnerability is present in all versions of MS IE from version 5 onward.

But Washington Post tech security writer Brian Krebs noticed that some of the safety precautions recommended by Microsoft don't work quite right.

"Microsoft recommends enabling a feature called 'data execution prevention,' by clicking 'Tools,' 'Internet Options,' then 'Advanced,' and then checking the box next to that option," he said. "However, when I tried to make the changes in IE7 on Vista, I found that option grayed out. To make that change, I had to close out of IE completely, then right click on the IE icon, select 'Run as Administrator,' and then alter the setting."

Krebs also noted that Microsoft advised MS IE users to change their security setting to "high," even though such a setting renders most common websites unreadable. In addition, MS IE users can disable a specific function to prevent the attacks. The function is called "oledb32.dll." Unfortunately, Krebs also ran into trouble when trying to remove it, leading him to make a dramatic recommendation.

"I would advise Windows users to consider browsing the web with anything other than Internet Explorer, at least until Microsoft issues a patch to fix this vulnerability," he said. "It is not my intention to over-hype the situation, but as we have seen time and again, attackers are usually very quick to take advantage of flaws in IE because the program is the default browser for close to 80 percent of the planet."

Related:  

Copyright © 2025 Adnet Media. All Rights Reserved. XBIZ is a trademark of Adnet Media.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.

More News

Ohio AG Threatens Action Against 'Major' Adult Sites Over AV Law

Ohio Attorney General Dave Yost announced today that his office is sending "notice of violation" letters to 19 adult websites for failure to comply with the state's recently enacted age verification law.

Chaturbate Announces 2025 Music Contest Winners

Chaturbate has revealed the winners of its 2025 music competition.

2026 XBIZ Exec Awards Pre-Noms Open With Debut of New 'Impact' Honors

XBIZ is pleased to announce that the pre-nomination period for the 2026 XBIZ Exec Awards, the adult industry’s premier career honor, begins today and runs through Oct. 14.

MYM Launches New Traffic System

German creator platform MYM has launched a new traffic system for its members.

Ukrainian Content Creators on Hook for Nearly $10M in Back Taxes

Content creators in Ukraine owe the equivalent of $9.3 million in back taxes, according to the country's State Tax Service.

Eroutique Relaunches Site Through YourPaysitePartner

Eroutique has relaunched its official website through YourPaysitePartner (YPP).

Update: Pornhub Will Not Block Ohio, Despite AV Law

Pornhub parent company Aylo will not block access to its websites in Ohio, despite new state age verification rules that came into effect Sept. 30.

Pineapple Support, Pornhub to Host 'ADHD-Friendly' Support Group

Pineapple Support and Pornhub are hosting a free online support group for performers with ADHD.

Judge Dismisses Some Claims in 'Children of Pornhub' Trafficking Suit

A United States district judge on Friday dismissed some but not all claims against Aylo in a long-running case involving CSAM allegations featured in the influential 2020 New York Times article “The Children of Pornhub.”

FSC Sets Key Dates, Qualifiers for December Board of Directors Election

The Free Speech Coalition (FSC) today announced key dates and qualifiers for its upcoming Board of Directors election.

Show More