Internet Explorer most dangerous web browser; Other browsers not far behind

ITworld.com, Ecommerce in Action |  Development Add a new comment

March 22, 2005, 9:41 AM In the last six months, Microsoft has lost a significant percentage of the browser market, with users switching primarily to Mozilla's Firefox. A new security study suggests that, while there may be good reasons to switch web browsers, browsers like Mozilla and Firefox have their own risks.

Symantec's recent Internet Security Threat Report compares the number and severity of vulnerabilities among various browsers. Their finding? That "as security-conscious users have migrated away from Internet Explorer, attackers have followed suit."

The report looks at vulnerabilities between July 1st and December 31st, 2004. During this time, there were 13 vulnerabilities documented that affected Microsoft Internet Explorer, while there were 21 vulnerabilities affecting each of the Mozilla browsers. Six vulnerabilities were reported in Opera.

Users wanting a browser with an unblemished security record may have to switch platforms; no vulnerabilities were cited for Apple's Safari browser.

Mozilla Browsers Have More Bugs; IE's More Dangerous

While Mozilla's security problems seem to be growing, the report still makes special note of Microsoft's security vulnerabilities: "Though the share of vulnerabilities affecting the Mozilla browsers has increased, Microsoft Internet Explorer still has a greater proportion of high-severity vulnerabilities. Of the 13 vulnerabilities affecting Microsoft Internet Explorer documented by Symantec this period, nine were considered high severity." In comparison, seven vulnerabilities affecting Firefox were highly severe.

While vulnerabilities have been discovered in IE's competitors, few if any credible reports of attacks against them have been reported. The report notes, "It remains to be seen whether these browsers will live up to the expectations that many have for them."

Summary

The rise in vulnerabilities in alternate browsers suggests that they may have benefited from "security through obscurity". While IE alternates currently appear to be much safer, this may change, as they become more attractive targets.

ADDITIONAL RESOURCES

Symantec Internet Security Threat Report Highlights Rise In Threats To Confidential Information



    Add a comment

    Post a comment using one of these accounts
    Or join now
    At least 6 characters

    Note: Comment will appear soon after you have activated your account.
    Obscene/spam comments will be removed and accounts suspended.
    The information you submit is subject to our Privacy Policy and Terms of Service.

    ITworld LIVE

    DevelopmentWhite Papers & Webcasts

    White Paper

    HP NonStop SQL Fundamentals whitepaper

    This whitepaper offers a detailed look into the fundamentals of HP NonStop SQL solutions. See how this system delivers unprecedented levels of application availability with fail-safe data integrity and meets the needs of enterprises with large-scale business critical applications.

    White Paper

    Nebraska Medical Center case study

    See how the Nebraska Medical Center implemented a SQL solution to make information more readily available to streamline operations, improve patient care and facilitate medical research with an enterprise solution running on HP NonStop servers.

    White Paper

    Concepts of NonStop SQL/MX

    For DBAs and developers who are familiar with Oracle solutions and want to learn about NonStop SQL/MX, this whitepaper provides an overview of the similarities and differences between the two products-with a specific focus on implementation.

    White Paper

    6 Things Your CIO Needs to Know About Requirements

    If your organization is not predictably successful on technology projects, there is likely an issue in requirements. CIOs must take action and own requirements maturity improvement. There are 6 main things a CIO must know about requirements.

    Webcast On Demand

    User Experience Monitoring

    In this webinar, you will learn hints & tips for improving end-user response times from Forrester Research analyst, Jean-Pierre Garbani.

    Sponsor: Nimsoft

    See more White Papers | Webcasts

    Answers - Powered by ITworld

    ITworld Answers helps you solve problems and share expertise. Ask a question or take a crack at answering the new questions below.

    Join Now

    New questions

    How much will the security flaws in Google Wallet set back the transition to "digital wallets"?
    1 answer
    What mobile apps are the worst offenders to user privacy?
    2 answers
    What are the main advantages/disadvantages of a hybrid cloud model vs. the public cloud?
    2 answers
    How do you bill for independent sales reps in a company IT contract?
    2 answers
    What would it take for you to allow a company to REALLY track all of your web use?
    2 answers
    View more questions

    Ask a question

    Join Now or Sign In to ask a question.
    Ask a Question