You are here: silicon.com > Software > Malware

Malware

Bofra nightmare will go on, says Gartner

Banner ad exploit too tempting for hackers

Tags: gartner, bofra, hacking, exploit

By Dan Ilett

Published: 25 November 2004 18:05 GMT

Hackers are set to increase their use of banner ad exploits as a means of gaining remote control of computers.

Analyst firm Gartner has predicted that attacks using the Bofra (buffer overflow frame exploit) or IFRAME exploit will become more common, especially around systems with sloppy patching.

In an emailed report issued on Thursday, the company said: "Gartner believes that attacks of this type will become increasingly common, especially around transition points -- systems where multiple versions of software (such as Windows 2000 and XP) are in use without full patches across both platforms."

The Bofra attack exploits an unpatched Internet Explorer 6.0 browser vulnerability, affecting Windows 2000 and Windows XP Service Pack 1 (SP1). Computers running SP2 not affected by the bug, but Apache Web servers are. The analyst company recommended businesses using Apache Web servers to apply security patches as soon as possible.

Earlier this year, Gartner publicly attacked Microsoft, saying companies should not expect the software giant to protect them.

"We've all been part of the biggest beta test the world has ever known -- Windows. Microsoft will not solve all of the security problems, no matter what the richest man in the world says," said Gartner vice-president Victor Wheatman in a keynote speech at Gartner's IT Security Summit in London.

Wheatman added that removing faulty software during operation was costing firms up to 5 percent more than finding flaws during testing.

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure

Clive Longbottom Windows 7: Not perfect - but ready for prime time Microsoft's latest OS fixes most of Vista's ills - but still has challenges ahead

Stephen Kleynhans Mind the details with Windows 7 Just because it might work better than Vista, it doesn't mean you can be sloppy


  • Jobs
Software Packaging /Windows XP And PC Build Technician

Software Packaging Technician required for busy Investment Bank to be responsible for the maintenance of the Desktop Build and software deployment. ...

SAP Heads of Practice : Directors, Partners & VPs

We recruit at all levels from graduate to Partner and Vice-President for both permanent and interim Management consulting roles and have a history of ...

Service Desk Analyst (2nd Line)

Experience in Reflex deployment server and Microsoft System Centre Configuration Manager 2007.o Experience in Management of configuration control of ...

Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.





Quick Sitemap Links: