Here we go again. Deja vu. Same song, different verse.
Microsoft’s newly released IE 7 (Internet Explorer 7) has a bug that allows it to be tricked by malicious code. What makes this worse is (a) Microsoft has touted the security in this release of IE, and (b) the bug is an old one that appeared first in IE 6.
The company has constructed a test that shows how IE 7 can be tricked by a malicious Web site to spoof the content of a pop-up window opened on a trusted site.
Secunia said the vulnerability was confirmed on a fully patched system with Internet Explorer 7.0 and Microsoft Windows XP SP2 (Service Pack 2).
Where was quality control at Microsoft when this happened? Come on guys, when are you going to get this right?
Old Window Injection Flaw Reappears in IE 7