Highly Critical Hole Found in IE

"Highly Critical Hole Found in IE

Posted by CmdrTaco on Thursday March 23, @02:20PM
from the must-be-thursday dept.

dotpavan writes "Eweek reports on a highly critical MS Internet Explorer hole found by Secunia Research's Andreas Sandblad. The vulnerability is due to the processing of the "createTextRange()" method call applied on a radio button control. From Secunia, "The vulnerability has been confirmed on a fully patched system with Internet Explorer 6.0 and Microsoft Windows XP SP2." The vulnerability has also been confirmed in Internet Explorer 7 Beta 2 Preview (January edition) though it could be avoided by turning off Active Scripting, as suggested by Microsoft Security Response Center blog. How would this put MS in the market, hit by the ever-growing shots of vulnerabilties? And would the divorce of IE7 from Vista's Windows Explorer help?""

I can't say that i'm really suprised by the fact that IE has a security flaw. I mean MS is practically famous for flaws in there software. Its just a bigger hole then usual. As usual MS has done almost nothing to fix up the error.