Monday, October 09, 2006
This is a vulnerability I first heard about a while back, and it came back to me recently since I've been using clipboard extensively when doing screen captures. While images aren't vulnerable, text certainly is. Firefox is apparently immune to this flaw, but even if you don't normally use Internet Explorer, it's still a good idea to close this security hole in IE that allows sites to access your clipboard.
To fix the clipboard security flaw:
Open up IE, and go to Tools -> Internet Options -> Security -> Select a security zone.
Choose Custom Level -> Scripting -> Allow paste operations via script and set this to disable.
It looks like IE 7 won't be affected by this problem. A prompt will pop up if a site tries to access your clipboard.