Comments on: Phishing Emails Exploit Browser Weaknesses http://www.allspammedup.com/2008/10/phishing-emails-exploit-browser-weaknesses/ Thu, 11 Mar 2010 22:28:34 -0700 http://wordpress.org/?v=2.8.6 hourly 1 By: Carl E. Reid http://www.allspammedup.com/2008/10/phishing-emails-exploit-browser-weaknesses/comment-page-1/#comment-555 Carl E. Reid Tue, 21 Oct 2008 15:33:52 +0000 http://www.allspammedup.com/?p=131#comment-555 James, Thank you for taking time out of your busy schedule to provide a comment. You are absolutely correct about the threat being dated. If we had more sharp administrators like yourself, security threats across the board would be minimized by 100%. In a perfect IT world every web browser installed will always be up to date. As administrators, most of us usually stay on top of updates on our computers. In large companies there is usually maintenance software that pushes software updates down to all computers on the network. In medium and small business, most administrators do not have the luxury of time or resources to insure web browsers are updated. So many users are left stranded with using old versions of web browsers and probably are not receiving appropriate security patches. As you mentioned that you were not aware of this threat, other administrators probably aren't either. Although the information in the article is dated, the goal of publishing it was to trigger "due diligence" by administrators to insure their end user community has the latest versions of web browsers, along with appropriate security fixes. James,

Thank you for taking time out of your busy schedule to provide a comment. You are absolutely correct about the threat being dated. If we had more sharp administrators like yourself, security threats across the board would be minimized by 100%.

In a perfect IT world every web browser installed will always be up to date. As administrators, most of us usually stay on top of updates on our computers. In large companies there is usually maintenance software that pushes software updates down to all computers on the network. In medium and small business, most administrators do not have the luxury of time or resources to insure web browsers are updated. So many users are left stranded with using old versions of web browsers and probably are not receiving appropriate security patches.

As you mentioned that you were not aware of this threat, other administrators probably aren’t either. Although the information in the article is dated, the goal of publishing it was to trigger “due diligence” by administrators to insure their end user community has the latest versions of web browsers, along with appropriate security fixes.

]]> By: James http://www.allspammedup.com/2008/10/phishing-emails-exploit-browser-weaknesses/comment-page-1/#comment-544 James Mon, 20 Oct 2008 23:53:04 +0000 http://www.allspammedup.com/?p=131#comment-544 I believe the information you have posted is completely out-dated. Upon reading the two exploits you mentioned in particular the Mozilla exploit I was confused because I hadn't heard of that one. I went to Cert, couldn't find it. Did a search on eventually found it. The Mozilla vulnerability was published 04-19-2005. The Outlook vulnerability was published 04-05-2004. Please update your post so that readers will not be alarmed and think that the product they are using has these exploits. Thank you. I believe the information you have posted is completely out-dated. Upon reading the two exploits you mentioned in particular the Mozilla exploit I was confused because I hadn’t heard of that one. I went to Cert, couldn’t find it. Did a search on eventually found it.
The Mozilla vulnerability was published 04-19-2005.
The Outlook vulnerability was published 04-05-2004.

Please update your post so that readers will not be alarmed and think that the product they are using has these exploits. Thank you.

]]>