Single Misplaced "&" Caused Latest IE Exploit

July 31, 2009 at 12:02 am PT

A security hole in Internet Explorer that opened the browser to hackers since early July was caused by a single typo in Microsoft’s (MSFT) code.

An errant ampersand (“&”) took the blame for the exploit, admitted Microsoft in a blog published Tuesday at its Security Development Lifecycle (SDL) Web site.

Read the rest of this post on the original site

Tagged with: CNET, digital, Internet, Internet Explorer, Lance Whitney, Microsoft, Security Development Lifecycle, software

comments so far. Add yours.

About Voices

This is a section of the AllThingsD Web site featuring posts that have been curated from around the Web: pieces we’ve read, discussions we’ve followed, stuff we like. Five posts are included here each weekday, but only the headline and the first two sentences. We link to the original site for the rest. The section is explicitly labeled, so it’s clear that content comes “from other Web sites.”

We also solicit original full-length posts and accept some unsolicited submissions. Voices is edited by Beth Callaghan.

Dive Into Media

Latest Video

View all videos »

Search »

Apple to Announce iPad 3 First Week in March

John Paczkowski in Mobile

Can’t Buy Me Love … But You Can Buy Me Gadgets

Lauren Goode in Commerce

LinkedIn Is Acquiring Contacts Start-Up Rapportive

Liz Gannes in Social

View all today’s news »