meaginn said:
Is IE 7 good enough to use now? I had some truble with it at first. meaginn
Nope.....
Internet Explorer 7 navcancl.htm Cross-Site Scripting Vulnerability
http://secunia.com/Internet_Explorer_7_navcancl.htm_Cross-Site_Scripting_Vulnerability/
"Introduction:
Aviv Raff has discovered a vulnerability in Internet Explorer 7, which
can be exploited by malicious people to conduct phishing attacks.
Please use the test below to see an example of how this vulnerability
can be exploited, and also to determine whether or not your browser is
vulnerable.
Test Case / Demonstration
The test will try to open a page with a spoofed address bar of "http://
www.google.com/".
Start the test
1) Follow the link below and click the "Refresh the page" link (may
change for different language versions) on the standard Internet
Explorer error page that will appear.
2) Click here to Start the Test.
Result
You are vulnerable, if a default Internet Explorer error page appears
with a link, which if clicked, results in a spoofed Google.com page.
You are not vulnerable to this particular exploit, if you do not
experience the above behaviour.
Credits
The test is based on Proof of Concept code by Aviv Raff
What should you do?
Please view the Secunia advisory below for information about how you
can fix or mitigate the impact of this weakness. Secunia will
continuously update the Secunia advisory when more information becomes
available.
- SA24535
Be alerted when a patch is released
Companies have the option of requesting a Secunia account for
immediate notification when a patch is released by Microsoft.
Request Secunia Account
Staying Informed
In order to protect yourself, it is a very good idea to stay informed
about the latest threats from vulnerabilities in the software you are
using.
Secunia offers a free weekly newsletter, which covers the latest
threats from vulnerabilities:
To sign-up for the Secunia Weekly Summary, please enter your email
address in the field below and submit the form:
Email Address: ...."