IE Flaw Lets Sites Track Your Mouse Cursor, Even When You Aren't Browsing 149
An anonymous reader writes "A new Internet Explorer vulnerability has been discovered that allows an attacker to track your mouse cursor anywhere on the screen, even if the browser isn't being actively used. 'Whilst the Microsoft Security Research Center has acknowledged the vulnerability in Internet Explorer, they have also stated that there are no immediate plans to patch this vulnerability in existing versions of the browser. It is important for users of Internet Explorer to be made aware of this vulnerability and its implications. The vulnerability is already being exploited by at least two display ad analytics companies across billions of page impressions per month.' All supported versions of Microsoft's browser are reportedly affected: IE6, IE7, IE8, IE9, and IE10."
Re:Some of these IE bugs are things of beauty. (Score:5, Insightful)
Seriously, I can't see why anybody else would care, mouse coordinates are not useful data for anything. The fact that they have "detector" exposed... somebody needs to stop working in development for that one.
It is useful data if the user is using a virtual keyboard on a touch-device.
Re:Some of these IE bugs are things of beauty. (Score:5, Insightful)
Or those virtual keyboards some banks force you to use to avoid keyloggers.
Re:Some of these IE bugs are things of beauty. (Score:2, Insightful)
Because it would be challenging, would BE the reason someone would write this exploit.