Go to the Softpedia homepage


NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
Home / News / Microsoft

Microsoft

The index.dat Windows File Builds Controversy

The "index.dat" was discarded in Internet Explorer 7

By Marius Oiaga, Technology News Editor

7th of August 2006, 12:03 GMT

Adjust text size:


PandaLabs, a developer and provider of integrated security solutions has recently issued a public warning through its daily security newsletter Oxygen3 concerning the way in which Microsoft's
Internet Explorer browser is administering the URL database. According to PandaLabs, the "index.dat" Windows file has surrounded itself with controversy because the manner in which it manages redundant information regarding Internet addresses, search queries and the last opened files. In this regard, the "index.dat" file functions as a database storing information related to Internet traffic. In the context of an enabled "AutoComplete" features the file records data. The volume of information stored refers to the Web pages navigated and to all the form fields filled. PandaLabs describes the two "index.dat" components of the Microsoft's browser as file cache and cookies.

PandaLabs has identified the controversy following the surfacing of several reports concerning the "index.dat" file. The reports stated that the file delivers a way for an attacker to access private user content. "index.dat" is a threat to privacy because it simply cannot be discarded, any deletion attempt being blocked by Windows while the program is active. PandaLabs has disclosed that even if all the data in the browser's history, temporary files and cookies is deleted, the "index.dat" file's content remains unchanged, keeping all the gathered data. In its daily security newsletter Oxygen3, PandaLabs describes that the only workaround to the deletion is starting Windows in Safe Mode.

Microsoft has announced that it has assessed this situation in its latest browser, and that the feature was discarded from the upcoming Internet Explorer 7, although prior versions are vulnerable to an attack via "index.dat".


Rating:
Good (3.1/5) 8 vote(s) so far    

Read by 5,579 user(s) | Add comment | Link to this article
Subscribe to news | Print article | Send to friend

© Copyright 2001-2008 Softpedia
Contact:

 

 

SEARCH THE NEWS ARCHIVE :




Today's News | Yesterday's News | News Archive


MORE RELATED ARTICLES:


Microsoft Office Users Vulnerable, Again

Windows Vista in the Hands of Asian Hackers

Microsoft Plugs 18 Security Holes

Oracle Fixes 65 Security Vulnerabilities

Exploits Surface for 2 Windows Vulnerabilities

Intel Addresses Centrino Wireless Vulnerabilities

Network Access Control is a Puzzle of Vulnerabilities

Botnet-keeper Arrested in the Wake of DDoS Attacks

Xerox Printers Vulnerability Unveiled at Black Hat

User opinions:

No user comments yet.
Be the first to express your opinion using the form below!

Share your opinion:

Your Name:
Your Email Address:
(will not be used for commercial purposes)
Solve this to prove you're not a bot: =
Your review/opinion:

 






SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   ENTER NEWS SITE   |   ENGLISH BOARD   |   ROMANIAN FORUM
© 2001 - 2008 Softpedia. All rights reserved.
Softpedia™ and the Softpedia™ logo are registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use | Update your software | Archive