ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Prices
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


IT Jobs

Security threats Toolkit

Microsoft IE patch leaves users locked out

Munir Kotadia ZDNet.co.uk

Published: 04 Feb 2004 14:05 GMT

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

A critical security patch released this week that fixes vulnerabilities in Internet Explorer has left many users unable to access certain Web sites and Internet resources.

Microsoft's latest IE update, which was released outside the monthly patching cycle, stops the company's browser from being used to transfer malicious code to a user's PC and fixes the URL spoofing flaw, but it also stops URLs from being used to access password-protected Internet resources, a feature that many companies employ.

Up until June 2003, Microsoft itself thought the system safe enough to use in Passport, a secure repository designed to hold users' personal information, including their credit card numbers.

Richard Excoffier, founder of adult entertainment Web site Toteme, told ZDNet UK that the IE update has left many of his customers complaining that they cannot access the site: "We distribute our software via shareware and the registration process uses the feature to communicate with our servers. We have a rapidly rising number of users complaining because they can't access the content and resources they have paid for," he said.

According to Excoffier, the company's system can be modified to work with IE within a few days, but in the cut-throat business of adult entertainment, losing a percentage of customers because they can't access the systems for even a short time means they will probably switch to a competitor: "The cost in human resources is not very high, we're more concerned about customers giving up because 'our system does not work' within the day or two we need to fix it," he said.

In addition, the effect of the patch appears to be inconsistent. Some users have found that even after the patch is applied, IE can still be used to access resources with a URL password, contrary to Microsoft's claims.

Microsoft was not available for comment.

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Did you find this article useful?
104 out of 201 people found this useful


Talkback

Post a comment


Full Talkback thread

15 comments

  1. This isn't exactly news. Microsoft was advertisin... Anonymous
  2. A whole week? And that wasn't enough time to not o... Arthur B.
  3. It's perfectly valid to pass username and password... S.
  4. Insert this in the registry and all user/passwords... Anonymous
  5. With all the better browsers out there for the PC,... Melangell
  6. With all the better browsers out there for the PC,... Melangell
  7. Who will refund me for changing my identification... Carton
  8. Classwork? Maybe you should go back to school, .ht... jerry ackeman
  9. Well, once again, we have the dumbing down of feat... Anonymous
  10. This recent gift from Microsoft has screwed up all... Anonymous
  11. So what non-US foreign globalized employee in what... Anonymous
  12. Is there a way, say in php to automatically authen... Anonymous
  13. Hello, Does anyone here have an alternative solut... Anonymous
  14. I must be a "criminal" because each time I try to... Frustrated Microsoft
  15. if you dont like windows, install linux, prat... Anonymous

Related Links

More In Security threats


Company/Topic Alerts

Create a new alert from the list below:









Related Jobs

Java/J2EE Developer - Weblogic - Media and Entertainment

QA Testing Engineer Media & Entertainment Industry - LONDON

Project Manager - Online Entertainment / Media

Featured Talkback

What was achieved there is recognised to be of fundamental importance to both winning the war (Churchill visited to say 'thank you' to them) and the development of the computer. Maybe Bill Gates doesn't want to support this museum because it underlines where electronic computing started i.e. here, not the U.S.

By: 1000103773

Read full story:
Bletchley Park faces bleak future

Sentry Posts Blog

Should a security professional have a...

My own experience and talking to colleagues has prompted me to wonder whether the day has arrived that security professionals will need a legal background. The information security... More

1 comment

Transys comment speculation

I've been pondering why it's so difficult to get any official comment out of any of the organisations involved when it comes to what is happening with Transys. Transys is the consortium... More

Post a comment

Wallet Phones Are Coming:Visa Should J...

Wallet Phones Are Coming:Visa Should Jump On Board Author: Eric Everson, Founder MyMobiSafe.com I have touched on the subject of wallet phones (a mobile handset capable of eliminating... More

Post a comment

Featured Oracle Resources

businessfirst: Ideas to help small companies retain their successful entrepreneurial spirit

Oracle ONE Magazine: Technology solutions for midsized businesses February 2008 edition

Choosing a Reliable and Powerful IT Infrastructure at a Price You Can Afford

Database Consolidation: Reducing Cost and Complexity

Ensuring Data Protection for Growing Business

Oracle for medium and emerging businesses: protect, strengthen and enhance your organisation

Oracle partner network solutions catalogue

See All White Papers