bit-tech.net

Go Back   bit-tech.net Forums > bit-tech.net > Article Discussion

Reply
 
Thread Tools
Old 13th Dec 2012, 11:49   #1
Gareth Halfacree
WIIGII!
bit-tech Staff
 
Gareth Halfacree's Avatar
 
Join Date: Dec 2007
Location: Bradford, UK
Posts: 3,673
Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.
Internet Explorer bug tracks your mouse cursor

No patch planned, says Microsoft.
http://www.bit-tech.net/news/bits/20...e-bug-cursor/1
__________________
Author, Raspberry Pi User Guide, Meet the Raspberry Pi | gareth.halfacree.co.uk | twitter
bit-tech news correspondent, Custom PC columnist, other things to other people
I'm a filthy freelancer! Hire me!
Gareth Halfacree is online now   Reply With Quote
Old 13th Dec 2012, 11:58   #2
will_123
Small childs brain in a big body
 
will_123's Avatar
 
Join Date: Feb 2011
Location: Edinburgh
Posts: 1,029
will_123 is the Cheesecake. Relix smiles down upon them.will_123 is the Cheesecake. Relix smiles down upon them.will_123 is the Cheesecake. Relix smiles down upon them.will_123 is the Cheesecake. Relix smiles down upon them.will_123 is the Cheesecake. Relix smiles down upon them.will_123 is the Cheesecake. Relix smiles down upon them.will_123 is the Cheesecake. Relix smiles down upon them.will_123 is the Cheesecake. Relix smiles down upon them.will_123 is the Cheesecake. Relix smiles down upon them.will_123 is the Cheesecake. Relix smiles down upon them.will_123 is the Cheesecake. Relix smiles down upon them.
Dont use it. Chrome or Firefox for me, but its worrying that they dont intend to patch it.
__________________
i5 3570k @ 4.5GhZ | H100i | Twin Frorz 7870 | Pure Pro MX Blue

Web Hosting - http://www.goforthhosting.com
will_123 is offline   Reply With Quote
Old 13th Dec 2012, 12:01   #3
ShinyAli
Supermodder
 
ShinyAli's Avatar
 
Join Date: Sep 2012
Location: UK
Posts: 288
ShinyAli - it's over 9000!!!!!!!!1!1!1!!!ShinyAli - it's over 9000!!!!!!!!1!1!1!!!ShinyAli - it's over 9000!!!!!!!!1!1!1!!!ShinyAli - it's over 9000!!!!!!!!1!1!1!!!ShinyAli - it's over 9000!!!!!!!!1!1!1!!!ShinyAli - it's over 9000!!!!!!!!1!1!1!!!ShinyAli - it's over 9000!!!!!!!!1!1!1!!!ShinyAli - it's over 9000!!!!!!!!1!1!1!!!ShinyAli - it's over 9000!!!!!!!!1!1!1!!!ShinyAli - it's over 9000!!!!!!!!1!1!1!!!ShinyAli - it's over 9000!!!!!!!!1!1!1!!!
Before I and probably some others go off on an anti IE rant has anyone tested other browsers for this exploit
ShinyAli is offline   Reply With Quote
Old 13th Dec 2012, 12:03   #4
Gareth Halfacree
WIIGII!
bit-tech Staff
 
Gareth Halfacree's Avatar
 
Join Date: Dec 2007
Location: Bradford, UK
Posts: 3,673
Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.
Quote:
Originally Posted by ShinyAli View Post
Before I and probably some others go off on an anti IE rant has anyone tested other browsers for this exploit
Yes, and they're not affected: it's specific to IE, as the article explains.
__________________
Author, Raspberry Pi User Guide, Meet the Raspberry Pi | gareth.halfacree.co.uk | twitter
bit-tech news correspondent, Custom PC columnist, other things to other people
I'm a filthy freelancer! Hire me!
Gareth Halfacree is online now   Reply With Quote
Old 13th Dec 2012, 12:50   #5
Bede
Ultramodder
 
Bede's Avatar
 
Join Date: Sep 2007
Location: England
Posts: 1,287
Bede - it's over 9000!!!!!!!!1!1!1!!!Bede - it's over 9000!!!!!!!!1!1!1!!!Bede - it's over 9000!!!!!!!!1!1!1!!!Bede - it's over 9000!!!!!!!!1!1!1!!!Bede - it's over 9000!!!!!!!!1!1!1!!!Bede - it's over 9000!!!!!!!!1!1!1!!!Bede - it's over 9000!!!!!!!!1!1!1!!!Bede - it's over 9000!!!!!!!!1!1!1!!!Bede - it's over 9000!!!!!!!!1!1!1!!!Bede - it's over 9000!!!!!!!!1!1!1!!!Bede - it's over 9000!!!!!!!!1!1!1!!!
I'm confused as to why Microsoft don't want to patch it. Is it a common occurrence to leave security holes open in software?
__________________
Coolermaster 690 II Advanced (white edition) | i5-2500K | MSI P67-GD53 | MSI GTX580 | 16gb Corsair Vengeance LP 1600Mhz 1.5V | Gelid Tranquillo | Asus Xonar DS | 700W Coolermaster Silent Pro M | Corsair Force Series 3 60GB | Crucial M4 128GB | Samsung Spinpoint F3 1TB
Bede is offline   Reply With Quote
Old 13th Dec 2012, 12:52   #6
Anfield
Supermodder
 
Join Date: Jan 2010
Posts: 510
Anfield - it's over 9000!!!!!!!!1!1!1!!!Anfield - it's over 9000!!!!!!!!1!1!1!!!Anfield - it's over 9000!!!!!!!!1!1!1!!!Anfield - it's over 9000!!!!!!!!1!1!1!!!Anfield - it's over 9000!!!!!!!!1!1!1!!!Anfield - it's over 9000!!!!!!!!1!1!1!!!Anfield - it's over 9000!!!!!!!!1!1!1!!!Anfield - it's over 9000!!!!!!!!1!1!1!!!Anfield - it's over 9000!!!!!!!!1!1!1!!!Anfield - it's over 9000!!!!!!!!1!1!1!!!Anfield - it's over 9000!!!!!!!!1!1!1!!!
Microsoft says they have no plan to patch it soon? kind of funny considering what they recently tried against android on twitter.
Anfield is offline   Reply With Quote
Old 13th Dec 2012, 13:03   #7
general22
Multimodder
 
Join Date: Dec 2008
Posts: 190
general22 has yet to learn the way of the Dremel
This is pretty much useless without some way to see what the user is looking at onscreen. MS are generally good with security updates and patching this probably isn't worth it.
general22 is offline   Reply With Quote
Old 13th Dec 2012, 13:18   #8
steveo_mcg
I Mod, Therefore I Own
 
Join Date: May 2005
Location: Edinburgh
Posts: 5,842
steveo_mcg is the Cheesecake. Relix smiles down upon them.steveo_mcg is the Cheesecake. Relix smiles down upon them.steveo_mcg is the Cheesecake. Relix smiles down upon them.steveo_mcg is the Cheesecake. Relix smiles down upon them.steveo_mcg is the Cheesecake. Relix smiles down upon them.steveo_mcg is the Cheesecake. Relix smiles down upon them.steveo_mcg is the Cheesecake. Relix smiles down upon them.steveo_mcg is the Cheesecake. Relix smiles down upon them.steveo_mcg is the Cheesecake. Relix smiles down upon them.steveo_mcg is the Cheesecake. Relix smiles down upon them.steveo_mcg is the Cheesecake. Relix smiles down upon them.
You sufer from a lack of imagination my friend. With a 6x6+1 on-screen keypad it would be fairly trivial to see a code Advertisers would love to see exactly where people are placing their mouse as then they can stick ads right under your nose. And those are just the two examples in the article the more imaginative will probably have even better ideas.

Besides all that if there is a security hole of any shape it should be patched soon after its discovered, it might be a "useless" thing to day but who knows how it will morph. Fit the lock before the horse even realises there is a door.
__________________
ook
steveo_mcg is offline   Reply With Quote
Old 13th Dec 2012, 13:22   #9
Snips
I can do dat, giz a job
 
Snips's Avatar
 
Join Date: Sep 2010
Location: wiv me kids
Posts: 1,862
Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.
Well the biggest and best do tend to get a few knocks every now and then. I don't foresee a problem here.
Snips is offline   Reply With Quote
Old 13th Dec 2012, 13:26   #10
Corky42
Mod Master
 
Join Date: Oct 2012
Posts: 2,513
Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.
Quote:
Originally Posted by Bede
I'm confused as to why Microsoft don't want to patch it. Is it a common occurrence to leave security holes open in software?
Maybe because they cant, maybe fixing it will mean disabling some important feature.

Its not good to say your not going to fix a security related bug as that is all most people will take away from it, that M$ isn't worried about peoples security.
Corky42 is online now   Reply With Quote
Old 13th Dec 2012, 14:14   #11
Snips
I can do dat, giz a job
 
Snips's Avatar
 
Join Date: Sep 2010
Location: wiv me kids
Posts: 1,862
Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.
I'd take it with a pinch of salt as this is not an official Microsoft statement. When they come out and state "they aren't doing anything about it" maybe then believe it but at the moment it's one companies word or a small company trying to gain some exposure?
Snips is offline   Reply With Quote
Old 13th Dec 2012, 16:13   #12
fdbh96
I *am* a Dremel
 
fdbh96's Avatar
 
Join Date: May 2011
Posts: 1,894
fdbh96 is the Cheesecake. Relix smiles down upon them.fdbh96 is the Cheesecake. Relix smiles down upon them.fdbh96 is the Cheesecake. Relix smiles down upon them.fdbh96 is the Cheesecake. Relix smiles down upon them.fdbh96 is the Cheesecake. Relix smiles down upon them.fdbh96 is the Cheesecake. Relix smiles down upon them.fdbh96 is the Cheesecake. Relix smiles down upon them.fdbh96 is the Cheesecake. Relix smiles down upon them.fdbh96 is the Cheesecake. Relix smiles down upon them.fdbh96 is the Cheesecake. Relix smiles down upon them.fdbh96 is the Cheesecake. Relix smiles down upon them.
I can just imagine an advert following the cursor around the screen. That would be very annoying, and I too wonder why Microsoft isn't going to patch it?
fdbh96 is offline   Reply With Quote
Old 13th Dec 2012, 22:03   #13
Snips
I can do dat, giz a job
 
Snips's Avatar
 
Join Date: Sep 2010
Location: wiv me kids
Posts: 1,862
Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.
Where did it say above that Microsoft said they weren't going to patch it? I didn't see any statement from Microsoft above or anywhere else.
Snips is offline   Reply With Quote
Old 14th Dec 2012, 00:12   #14
Gradius
IT Consultant
 
Join Date: Feb 2009
Posts: 284
Gradius should be considered for presidentGradius should be considered for presidentGradius should be considered for presidentGradius should be considered for presidentGradius should be considered for presidentGradius should be considered for presidentGradius should be considered for presidentGradius should be considered for presidentGradius should be considered for presidentGradius should be considered for presidentGradius should be considered for president
I don't use IE since 2007.
Gradius is offline   Reply With Quote
Old 14th Dec 2012, 00:16   #15
Corky42
Mod Master
 
Join Date: Oct 2012
Posts: 2,513
Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.
Quote:
Originally Posted by Snips
Where did it say above that Microsoft said they weren't going to patch it? I didn't see any statement from Microsoft above or anywhere else.
I have never know Microsoft to publish details of a bug before they release the update to fix it, normally you get the update and they give details of what that update fixes.
Corky42 is online now   Reply With Quote
Old 14th Dec 2012, 07:30   #16
SimonStern
Registered Lurker
 
SimonStern's Avatar
 
Join Date: Dec 2010
Location: Redlands, California
Posts: 170
SimonStern - it's over 9000!!!!!!!!1!1!1!!!SimonStern - it's over 9000!!!!!!!!1!1!1!!!SimonStern - it's over 9000!!!!!!!!1!1!1!!!SimonStern - it's over 9000!!!!!!!!1!1!1!!!SimonStern - it's over 9000!!!!!!!!1!1!1!!!SimonStern - it's over 9000!!!!!!!!1!1!1!!!SimonStern - it's over 9000!!!!!!!!1!1!1!!!SimonStern - it's over 9000!!!!!!!!1!1!1!!!SimonStern - it's over 9000!!!!!!!!1!1!1!!!SimonStern - it's over 9000!!!!!!!!1!1!1!!!SimonStern - it's over 9000!!!!!!!!1!1!1!!!
I posted about this in software yesterday and nobody seemed to care lol

http://forums.bit-tech.net/showthread.php?t=253175
__________________
I may not be playing with a full deck, but I still deal...
Steam: SimonStern PSN: OvaltineJenkins3 Origin: TheSternOne
SimonStern is offline   Reply With Quote
Old 14th Dec 2012, 08:00   #17
Gareth Halfacree
WIIGII!
bit-tech Staff
 
Gareth Halfacree's Avatar
 
Join Date: Dec 2007
Location: Bradford, UK
Posts: 3,673
Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.
Article updated with official comment from Microsoft: apparently a patch, of sorts, is in the pipeline.
__________________
Author, Raspberry Pi User Guide, Meet the Raspberry Pi | gareth.halfacree.co.uk | twitter
bit-tech news correspondent, Custom PC columnist, other things to other people
I'm a filthy freelancer! Hire me!
Gareth Halfacree is online now   Reply With Quote
Old 14th Dec 2012, 10:29   #18
LordPyrinc
Legomaniac
 
LordPyrinc's Avatar
 
Join Date: Mar 2008
Location: USA
Posts: 561
LordPyrinc should be considered for presidentLordPyrinc should be considered for presidentLordPyrinc should be considered for presidentLordPyrinc should be considered for presidentLordPyrinc should be considered for presidentLordPyrinc should be considered for presidentLordPyrinc should be considered for presidentLordPyrinc should be considered for presidentLordPyrinc should be considered for presidentLordPyrinc should be considered for presidentLordPyrinc should be considered for president
I use IE and have recently experienced a temporarily unresponsive mouse on more than one occasion, usually lasts between 3 to 5 seconds. Considering that the mouse is wireless, I first thought it was a battery issue, but after replacing the battery the problem has happened again. If I recall correctly, most of the incidents happened on a very popular news site, formerly known as MSNBC. The plethora of ads on the site and pop-ups that get blocked sometimes crashes the browser and requires IE to try to automatically recover as well.
__________________

Intel i7-920 @ 2.66GHz - Corsair Vengeance 16GB DDR3 @ 1600MHz - Windows7 64bit
2 x 150GB WD VelociRaptor HDs (RAID 0) - 1TB WD 7200 rpm HD - 60GB OCZ SSD - 1TB WD External USB HD
2 x EVGA GeForce GTX 660Ti 2GB Superclocked (Dual SLI) - Razer BlackWidow Ultimate KB
Cooler Master HAF 922 - Antec 850W TruePower Quattro - 27" Samsung S27B550 LED Display
LordPyrinc is offline   Reply With Quote
Old 14th Dec 2012, 21:18   #19
Snips
I can do dat, giz a job
 
Snips's Avatar
 
Join Date: Sep 2010
Location: wiv me kids
Posts: 1,862
Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.Snips is definitely a rep cheat.
'From what we know now, the underlying issue has more to do with competition between analytics companies than consumer safety or privacy. The only reported active use of this behavior involves competitors to Spider.io providing analytics.'

What was it I said earlier? exactly that
Snips is offline   Reply With Quote
Old 14th Dec 2012, 21:29   #20
ShinyAli
Supermodder
 
ShinyAli's Avatar
 
Join Date: Sep 2012
Location: UK
Posts: 288
ShinyAli - it's over 9000!!!!!!!!1!1!1!!!ShinyAli - it's over 9000!!!!!!!!1!1!1!!!ShinyAli - it's over 9000!!!!!!!!1!1!1!!!ShinyAli - it's over 9000!!!!!!!!1!1!1!!!ShinyAli - it's over 9000!!!!!!!!1!1!1!!!ShinyAli - it's over 9000!!!!!!!!1!1!1!!!ShinyAli - it's over 9000!!!!!!!!1!1!1!!!ShinyAli - it's over 9000!!!!!!!!1!1!1!!!ShinyAli - it's over 9000!!!!!!!!1!1!1!!!ShinyAli - it's over 9000!!!!!!!!1!1!1!!!ShinyAli - it's over 9000!!!!!!!!1!1!1!!!
Quote:
Originally Posted by ShinyAli View Post
Before I and probably some others go off on an anti IE rant has anyone tested other browsers for this exploit
Quote:
Originally Posted by Gareth Halfacree View Post
Yes, and they're not affected: it's specific to IE, as the article explains.
Maybe not,

UPDATE 2012-12-14
Microsoft's Dean Hachamovitch, corporate vice president in charge of Internet Explorer, has issued a statement on the matter. 'We are actively working to adjust this behavior in IE. There are similar capabilities available in other browsers. Analytics firms can expect to do viewpoint detection in IE similarly to how they do this in other browsers,' Hachamovitch claimed.
ShinyAli is offline   Reply With Quote
Reply

Tags
advertising, analytics, ie 10, ie 6, ie 7, ie 8, ie 9, internet explorer, security, spider.io, tracking, vulnerability, windows 8

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT +1. The time now is 10:34.
Powered by: vBulletin Version 3
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.