Re: AOL Abuses Internet Explorer's Trusted Sites Feature

From: NeoSadist (neos@dist)
Date: 10/30/02 

From: "NeoSadist" <neos@dist>
Date: Wed, 30 Oct 2002 15:50:13 -0700

"WRCsam" <UUsam@WTFhotmail.com.uu.WTF> wrote in message
news:eh#ujvFgCHA.1768@tkmsftngp11...
> AOL Abuses Internet Explorer's Trusted Sites Feature
>
> by WRCsam
>
> UUsam@hotmail.com
>
>
>
>
>
>
>
> There is a security and privacy vulnerability present when users (you)
> install Winamp, Winamp3, Netscape, AOL Instant Messenger, and perhaps
> other software sponsored by AOL.
>
>
>
> These software titles, sponsored by AOL, upon installation deliver
> those pesky "Get free AOL" icons and links. These pesky software
> titles, sponsored by a pesky ISP, also feature unnecessary registry
> clutter, such as Nullsoft\\Winamp3\\AOD\\ (in the case of Winamp3).
> Hai! My friends, these are just the things the average user sees!
>
>
>
> The security and privacy issues arise when these AOL sponsored
> programs install into your Internet Explorer's Trusted Site List their
> site, http://free.aol.com/. This gives them full access to your
> build-in and precious Internet Explorer security vulnerabilities.
> They can run an Active-X control on your machine with full security
> privileges without you knowing it! They can identify one PC from
> another PC visiting their site! Hell, they can do whatever is
> permitted in your Internet Explorer's Security//Trusted Sites
> settings - EVERYTHING!
>
>
>
> What can you do?
>
>
>
> If you cannot live without those pesky trashsoft clutter, there are
> two things you should do to protect yourself.
>
>
>
> a) Edit your Trusted Sites list in Internet Explorer settings, remove
> http://free.aol.com/ and other sites you know nothing about.
>
> b) "Reset" your Trusted Sites profile to MEDIUM. (done in Internet
> Explorer settings//Security)
>
>
>
>
>
>
>
> WRCsam
>
> 10/30/2002 MDCC-Wolfson, Miami, FL
>
> GOOD YEAR NASCAR VIC
>
>

Hell yeah it does. If you ever install anything that puts a shortcut on
your computer for "try AOL", etc, it puts itself in the trusted site without
your permission. I find that all the time. I usually delete it from there
and put it in the restricted zone lol.
AoHell is probably one of the worst things to happen to the internet as a
whole.

Relevant Pages

  • Anyone up for a challenge?
    ... Internet connection. ... cracker is somehow using it or relying on it for something. ... A funny thing I saw today, was that when the MSIE security was set to ... the "can not find server" white page, while the internal AOL browser ...
    (comp.security.firewalls)
  • Re: Unwanted Popups
    ... that still haunts the Internet. ... the security gap represented by these messages is particularly ... Messenger Service of Windows ... This is because AOL is an on-line ...
    (microsoft.public.windowsxp.security_admin)
  • Re: Poppers !!!
    ... that still haunts the Internet. ... the security gap represented by these messages is particularly ... Messenger Service of Windows ... This is because AOL is an on-line ...
    (microsoft.public.windowsxp.help_and_support)
  • Re: Odd behavior - no response..
    ... Norton Internet Security 2005 on my PC and I thought that when this was ... I found in the AntiSpam section a popup blocker, too, and when disabling ... Try placing the site in Trusted Sites (Internet Options> Security.) ...
    (microsoft.public.windows.inetexplorer.ie6.browser)
  • Re: ActiveX Warning and Yahoo
    ... In Internet Options> Security> Trusted sites, are the default settings being ... But Yahoo is part of Trusted Sites. ...
    (microsoft.public.windows.inetexplorer.ie6.browser)