Security Flaw Leaves All Microsoft Internet Explorer Users Vulnerable

CYBERSPACE — A new security hole affects all versions of Microsoft's Internet Explorer, leaving users of the leading web browser vulnerable to attack on a wide array of compromised websites.

Two online security firms have reported that hackers have broken in an unspecified number of websites and added malicious code that exploits the vulnerability in MS IE. Once installed, the virus starts stealing sensitive user data.

Online security firms Security Fix and SANS Internet Storm Center both reported on the vulnerability, which is linked to a specific file associated with MS IE. Microsoft also released an advisory, saying that the vulnerability is present in all versions of MS IE from version 5 onward.

But Washington Post tech security writer Brian Krebs noticed that some of the safety precautions recommended by Microsoft don't work quite right.

"Microsoft recommends enabling a feature called 'data execution prevention,' by clicking 'Tools,' 'Internet Options,' then 'Advanced,' and then checking the box next to that option," he said. "However, when I tried to make the changes in IE7 on Vista, I found that option grayed out. To make that change, I had to close out of IE completely, then right click on the IE icon, select 'Run as Administrator,' and then alter the setting."

Krebs also noted that Microsoft advised MS IE users to change their security setting to "high," even though such a setting renders most common websites unreadable. In addition, MS IE users can disable a specific function to prevent the attacks. The function is called "oledb32.dll." Unfortunately, Krebs also ran into trouble when trying to remove it, leading him to make a dramatic recommendation.

"I would advise Windows users to consider browsing the web with anything other than Internet Explorer, at least until Microsoft issues a patch to fix this vulnerability," he said. "It is not my intention to over-hype the situation, but as we have seen time and again, attackers are usually very quick to take advantage of flaws in IE because the program is the default browser for close to 80 percent of the planet."

Related:  

Copyright © 2026 Adnet Media. All Rights Reserved. XBIZ is a trademark of Adnet Media.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.

More News

Segpay Partners With Corey Silverstein for Legal Services

Segpay has partnered with adult industry attorney Corey D. Silverstein for specialized legal compliance and policy support for its merchant network.

AEBN Reveals Kasey Kei as Top Trans Star for Q2 of 2026

AEBN has named its top trans stars for the second quarter of 2026, with Kasey Kei landing atop the leaderboard.

Missouri Governor Signs Bill Making AV Regulations State Law

Missouri Governor Mike Kehoe signed a bill into law on Thursday requiring adult websites to age-verify users in the state, finalizing a legislative “stamp of approval” for AV rules after Missouri’s attorney general unilaterally imposed similar regulations last year.

Utherverse Launches 'Adult Game Fest' Virtual Convention

Virtual reality and metaverse technology company Utherverse is launching its inaugural Adult Game Fest convention and trade show, taking place Sept. 24-26.

Ofcom Fines Fapello $845,000 for AV Noncompliance

U.K. media regulator Ofcom on Thursday imposed a fine of 630,000 pounds (about $845,000) against adult website fapello.com for failing to comply with provisions of the Online Safety Act.

KiwiSourcing Joins Pineapple Support as Sponsor

Outsourcing and consulting firm KiwiSourcing has joined the ranks of over 70 adult businesses and organizations committing funds and resources to Pineapple Support.

AdultHTML Introduces AI-First Development Services

AdultHTML has introduced an AI-first development service, giving clients access to experienced software developers who use AI to streamline software development.

Texas Court Orders Adult Site Domain Locked for AV Violations

A district court in Texas has issued a writ requiring domain registry Verisign to “lock” an adult website’s domain over noncompliance with the state’s age verification law.

Adult Web Hosting Service 'QloudHost' Launches

QloudHost, a new web hosting service for adult websites, has launched.

Peter Hooke Launches New Paysite

Peter Hooke has launched an official website through PAYSITE.

Show More