Home page logo

fulldisclosure logo Full Disclosure mailing list archives

RE: How big is the danger of IE?
From: psz () maths usyd edu au (Paul Szabo)
Date: Fri, 9 Jul 2004 09:11:02 +1000 (EST)

Eric Paynter <eric () arcticbears com> wrote:


The amazing part is that CERT, a vendor-neutral organization who usually
only provides information about how to secure a product, who does not
counsel on product choice, has made a recommendation to consider
alternatives to IE. Have they ever made such a recommendation in the past?
Certainly not that I'm aware of.

They have the (almost) exact same "drop IE" paragraph in


since February 2004. (There used to be an even stronger warning in
http://www.kb.cert.org/vuls/id/323070 but it was toned down after the 
release of MS04-013.)

I do not read that as advice on product choice, just a statement of the
technical inadequacy of IE.


Paul Szabo - psz () maths usyd edu au  http://www.maths.usyd.edu.au:8000/u/psz/
School of Mathematics and Statistics  University of Sydney   2006  Australia

Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]