I am running Windows XP Pro.
Norton Internet Security 2005 reported this error several times at the same site on my machine.
Attempted Intrusion "MSIE_File_Drag_and_Drop_E
against your machine was detected and blocked.
Risk Level: High.
Attacked IP: 0.0.0.0.
Attacked Port: 2011.
Now, I have a special concern about this because I actually created the files at that website and it's mostly plain vanilla html with drop down menus made using my software suite. There are 4 files that use php to create a small database and this database is used in only one area of the site. When surfing to this site, the home page comes up, but then the pattern becomes erratic. If I click on the starting page for the dynamic pages, that also comes up, but the persuant files do not. After that, the rest of the site (html files) will not display either.
I called Symantec and spent 2 hours with them today. They are now "researching" this issue and will call me back tomorrow. They did duplicate the problem. If I turn the Internet Security off the entire site displays just fine. There is really nothing particularly unusual about this site. It has been functioning well since it was installed on the server. I'm not certain how long this has been going on, but a search for this problem brought me to this page:
which states that on Feb 14 some update addressed the issue of MSIE_File_Drag_and_Drop_Em
bed_Code. I wonder if that is when the issue actually began.
I've called the web host for the site and he cannot identify anything at all wrong with the site. I'm not certain what could be tripping this intrusion report but the bottom line is that I fear that a substantial number of people may have difficulty viewing the site and I don't know what to do. I don't know what this is referring to. There are no files to drag and drop on this site. I do have a couple of links to .pdf files on some pages, and outbound links to other sites too, but as I said, it's all been working just fine up until now for a long time.
I found some further information that is difficult for me to understand, yet I believe may be related, at this page: http://www.sans.org/newsletters/risk/vol3_33.php
How can I fix something when I don't know what's causing the issue?!! Help!! I am responsible for making this website work properly.
I have NO problems whatsoever with other pages on the net on this system.