Feeds

IE7 unleashed

...as researchers identify first bug

Internet Security Threat Report 2014

Microsoft's much-anticipated IE7 browser is finally available for download, 18 months after Bill Gates announced plans to deliver Redmond's first major upgrade to its browser software since the release of IE6 in August 2001.

Key enhancements to IE 7 over IE 6 include anti-phishing features and improved ActiveX controls among several security improvements. The browser also promises enhancements to support web standards (such as HTML 4.01/CSS 2), the long-awaited introduction of tabbed browsing, and an integrated RSS feed reader. Many of these features are already included in Opera, and improved anti-phishing features will debut with the imminent (if delayed) arrival of Firefox 2.0, so to some extent market-leader Microsoft could be described as playing catch-up with its smaller rivals.

Some things don't change. Security researchers have already discovered an information disclosure vulnerability in IE7 (story here). The security bug - rated as "less critical" by Secunia, the first to warn of the problem - might be used to access documents served from another web site. So the security bug lends itself to possible misuse in various scam and phishing attacks, Thomas Kristensen, CTO of security notification firm Secunia, told El Reg.

Only English versions of IE7 for XP are available thus far. The software will run systems running Windows XP SP2, Windows XP Professional x64 Edition or Windows Server 2003 SP1. Arabic, Finnish, French, German, Japanese, and Spanish language versions will follow in around two weeks, Redmond promises, with other language releases to follow.

A customised version of the software from Yahoo! is already available for download. The release of other customised versions from MS partners such as Weather.com and USA Today are imminent. Much more on this and other IE7 news can be found on Microsoft's IE development blog.

The long-awaited next version of Microsoft's browser software will be pushed out as an automatic update in a "few weeks", probably as part of Microsoft's regular Patch Tuesday update cycle in either November or December. Firms not ready to install IE7 will be able to temporarily block the update.

Redmond has produced a variety of tools to aid web site testing ahead of widespread use of the browser software, as explained in a posting on its IE development blog. ®

Internet Security Threat Report 2014

More from The Register

next story
Download alert: Nearly ALL top 100 Android, iOS paid apps hacked
Attack of the Clones? Yeah, but much, much scarier – report
NSA SOURCE CODE LEAK: Information slurp tools to appear online
Now you can run your own intelligence agency
Microsoft: Your Linux Docker containers are now OURS to command
New tool lets admins wrangle Linux apps from Windows
Microsoft adds video offering to Office 365. Oh NOES, you'll need Adobe Flash
Lovely presentations... but not on your Flash-hating mobe
You stupid BRICK! PCs running Avast AV can't handle Windows fixes
Fix issued, fingers pointed, forums in flames
HTML5 vs native: Harry Coder and the mudblood mobile app princes
Developers just want their ideas to generate money
prev story

Whitepapers

Driving business with continuous operational intelligence
Introducing an innovative approach offered by ExtraHop for producing continuous operational intelligence.
Why CIOs should rethink endpoint data protection in the age of mobility
Assessing trends in data protection, specifically with respect to mobile devices, BYOD, and remote employees.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Protecting against web application threats using SSL
SSL encryption can protect server‐to‐server communications, client devices, cloud resources, and other endpoints in order to help prevent the risk of data loss and losing customer trust.