TOPIC: Web Sites Exploiting IE Flaw; Microsoft Working On Fix
There are reports that web sites are already exploiting the Internet Explorer TextRange () flaw to install spyware on vulnerable computers. As of Monday morning, more than 200 such sites have been detected. The flaw exists in IE 6 and IE 7 beta 2; this marks the third IE vulnerability disclosed in one week. Microsoft is developing a fix. Users are advised to disable Active Scripting in IE.