Staff: Secunia reports that “pushing” a simple HTML button can allow a perpetrator’s website to take over your perfectly patched computer running either Internet Explorer 6 or IE7 on Windows XP with Service Pack 2.

Secunia says the problem starts with a radio button control using the createTextRange() method call.

As of this writing, there is no patch. The only solution is to avoid evil websites with banner ads promising to trash your computer if you click on their radio button controls.

No word on whether Firefox or Opera are similarly effected. You may want to try one of them while you’re waiting for all the evil websites to update those banner ads.

Sometimes it takes awhile.

Full Story »