IE7 breaks commercial apps

Dennis says IE7 breaks Sage’s home page.

As bad as this is, think about companies that distribute IE7 to several thousand users automatically, only to realize their web based internal ERP systems don’t quite work as they used to.

It seems we finally reached the point where we need to realise a browser is no longer just a procrastination app, but the center of our daily work life. This may actually be an opportunity for the Firefox guys to beat Microsoft in their own domain. Can’t have business apps break, can we?

Time for a browser we can rely on. I found mine already. And it’s not IE7.

Now, that didn’t take long, did it…?

Internet Explorer 7 “mhtml:” Redirection Information Disclosure

Secunia Advisory: SA22477
Release Date: 2006-10-19

Less critical
Impact: Exposure of sensitive information
Where: From remote
Solution Status: Unpatched

Software: Microsoft Internet Explorer 7.x

This advisory is currently marked as unpatched!
– Companies can be alerted when a patch is released!

A vulnerability has been discovered in Internet Explorer, which can be exploited by malicious people to disclose potentially sensitive information.

The vulnerability is caused due to an error in the handling of redirections for URLs with the “mhtml:” URI handler. This can be exploited to access documents served from another web site.