One in every 67 web pages exploits vulnerabilities in IE

Tim · #1 (**permalink**) 02-16-2006, 07:32 AM

A large and comprehensive study (PDF) by a group of researchers at the Department of Computer Science and Engineering at the University of Washington has found that 1.5 percent of the URLs crawled exploited flaws in Internet Explorer to install malicious spyware. That's one in every 67 web pages analysed included content to exploit vulnerabilities in the browser.

More proof, if it were needed, that Internet Explorer is a major security liability and that having adequate protection from a firewall and good, regularly updated anti-virus/spyware programs is essential. My advice would be to only use IE for security updates and testing pages only.

bodgekaloopie · #2 (**permalink**) 02-16-2006, 10:32 AM

Tim,

I, for one, think this is very valuable information. Sadly, it's not entirely surprising.

The fact that the study indicates a trend toward increased malicious spyware online is disturbing. Your advice to only use IE for security updates and testing is excellent.

Thanks for sharing.

Chris · #3 (**permalink**) 02-16-2006, 11:11 AM

the sad thing about MS's approach to Internet technologies is that it's reactive instead of preventive. if i'm not mistaken, a number of the security fixes that came with the infamous Service Pack 2 were known to Redmond before XP even launched... but yet it took them about two years to correct these mistakes.

things like this make you realize why Firefox became so popular so fast. it's the only browser to make a "substantial" dent in IE's market share since Netscape... i wonder why.

ADAM Web Design · #4 (**permalink**) 02-16-2006, 12:01 PM

There's only one problem with the study, and something that conveniently gets glossed over:

IE, having a much larger market share than FireFox, is naturally going to be targeted more. Sooner or later, if and when FF ever gets to the same levels, the same targeting will occur and people will be saying the exact same things.

So there's bound to be more spyware attacks in IE than in FF...for now.

Chris · #5 (**permalink**) 02-16-2006, 12:38 PM

right you are ADAM, but does Firefox release a product it knows has security issues to the market? also, Firefox is very quick to patch any security issues. in some cases, they've had a fix available the day a vulnerability is reported... something the boys at redmond have not done.

Tim · #6 (**permalink**) 02-16-2006, 05:40 PM

Quote:

Originally Posted by ADAM Web Design

There's only one problem with the study, and something that conveniently gets glossed over:
IE, having a much larger market share than FireFox, is naturally going to be targeted more. Sooner or later, if and when FF ever gets to the same levels, the same targeting will occur and people will be saying the exact same things.
So there's bound to be more spyware attacks in IE than in FF...for now.

I understand where you're coming from Adam but that's not the point. The study is simply focusing on the browser that most people are actually using, IE. At no point do they, or I with my post, advocate a safer browser. There are no conveniently glossed over elements. It's easily said but ultimately a red-herring.

More to the point, there are no 'safe' browsers. Many like to think that Firefox is safe but that is just untrue. Firefox is just a browser, not a security system. The fact that it does not accept ActiveX in the same way as Internet Explorer doesn't make it safe. Most malicious adware doesn't use ActiveX anyway. Actually, Opera 8.x is probably the safest browser.

The thing that pisses me off the most about Microshaft is that most of their good ideas were 'borrowed' from cleverer programmers and then they tinkered with them and messed them up. Take for instance the now defunct Java Virtual Machine v1.1.4 (Build 5.0.3810), originally licensed from Sun Microsystems but later modified by Microsoft. It is suspected that the modifications were the reason why this vulnerability was exploited by CoolWebSearch. Microsoft responded by withdrawing MSJVM without even a patch. To remove MSJVM use this tool and to install a better version of Sun Java Virtual Machine go here.

I like Firefox because it's compliant and versatile but it is also possible to corrupt FF extensions eg. Greasemonkey script. Like Chris said at least Firefox is quick to respond to liabilities and when they do it's not just a patch but a new installation.

This is all sort of irrelevant!

For me, the main point about the findings is that one in every 67 web pages exploits vulnerabilities in IE. The single element that should be focused on is who are these malicious codes aimed at, not which browser. The answer is the young. Whilst pirate sites (illegal software) get the worst score, music and games sites are close behind. Children and teenagers are the biggest consumers within all of these categories.

The bottom line is that, at home, the youngest people and those who think like them are the biggest security vulnerabilities to your computer system!
Get;

CCleaner: but do not install the Yahoo Toolbar.
CWShredder
Ad-aware SE
Spybot-Search and Destroy
Microsoft AntiSpyware

In the work place, hopefully child like surfing doesn't prevail but if it does, protect your systems with all of the above and the more advanced versions of anti-virus programs that understand exploits without actually having their signatures.

Whatever you do avoid Microsoft Internet Explorer like the plague.

southplatte · #7 (**permalink**) 02-17-2006, 02:42 AM

Tim,

Nice list of utilites there, just don't forget a good AV program. I like Norton myself, but have also had good luck with Computer Associates and AVG. I hear NOD32 is awesome too.

encoder · #8 (**permalink**) 03-15-2006, 07:33 AM

My problem is there are sites that require IE in order for them to be opened. Although I use FF most of the time, I still use IE when I can't open a page in FF.

In my case, FF is much faster than IE. So I often use FF. But why is it faster?

sacx13 · #9 (**permalink**) 04-14-2006, 01:52 AM

Quote:

Originally Posted by ADAM Web Design

There's only one problem with the study, and something that conveniently gets glossed over:

IE, having a much larger market share than FireFox, is naturally going to be targeted more. Sooner or later, if and when FF ever gets to the same levels, the same targeting will occur and people will be saying the exact same things.

So there's bound to be more spyware attacks in IE than in FF...for now.

This is not applicable here :)
For example Apache have a larger market than IIS but the most security problems are related to IIS.

My 2 cents

Regards