Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.



BDFL - Memuneh
51593 posts

Uber Geek
+1 received by user: 5590

Administrator
Trusted
Geekzone
Subscriber

Topic # 109333 18-Sep-2012 13:06 Send private message

It appears an Internet Explorer zero day vulnerability is being exploited in the wild now.

If you're using Internet Explorer 7, Internet Explorer 8 or Internet Explorer 9 make sure your AV is up-to-date. Or switch browsers.

Details here and here.

Note that switching browsers doesn't mean your new browser doesn't have other vulnerability - no software is 100% secure anyway.




Create new topic


BDFL - Memuneh
51593 posts

Uber Geek
+1 received by user: 5590

Administrator
Trusted
Geekzone
Subscriber

  Reply # 687806 18-Sep-2012 17:01 Send private message





3267 posts

Uber Geek
+1 received by user: 121

Trusted

  Reply # 687811 18-Sep-2012 17:16 Send private message

You can also install the EMET tool to protect from remote hackers exploiting this flaw.

http://www.microsoft.com/en-us/download/details.aspx?id=29851




Do whatever you want to do man.

  

gzt

5027 posts

Uber Geek
+1 received by user: 323

Subscriber

Reply # 687831 18-Sep-2012 17:54 Send private message

Related to the recommendation in the US-CERT article - are not DEP + ASLR already enabled by default in 2K8 and later OS and IE8 forward?

It would be unusual if they were not enabled on those systems already right?

I'd find out but I'm still clearing space to virtualise windows on my mac ;  ).

8093 posts

Uber Geek
+1 received by user: 502


  Reply # 687838 18-Sep-2012 18:11 Send private message

billgates: You can also install the EMET tool to protect from remote hackers exploiting this flaw.

http://www.microsoft.com/en-us/download/details.aspx?id=29851


I wonder why microsoft aren't pushing this update through as a windows update.



BDFL - Memuneh
51593 posts

Uber Geek
+1 received by user: 5590

Administrator
Trusted
Geekzone
Subscriber

  Reply # 687840 18-Sep-2012 18:15 Send private message

Because that is not the update to fix it, but a tool to harden the system.




17256 posts

Uber Geek
+1 received by user: 1732

Trusted
Vodafone NZ

  Reply # 687852 18-Sep-2012 19:19 Send private message

Would this not be covered under the CGA and you get sent a brand new computer?

:-P




gzt

5027 posts

Uber Geek
+1 received by user: 323

Subscriber

  Reply # 687868 18-Sep-2012 19:58 Send private message

Microsoft advisory note is out..

http://technet.microsoft.com/en-us/security/advisory/2757760

"On completion of this investigation, Microsoft will take the appropriate action to protect our customers, which may include providing a solution through our monthly security update release process, or an out-of-cycle security update, depending on customer needs"

expect a patch.

3267 posts

Uber Geek
+1 received by user: 121

Trusted

  Reply # 688962 20-Sep-2012 17:16 Send private message

An update will be made available this friday via windows update but those who wish to fix it now, can download and run the fix it tool today.

http://support.microsoft.com/kb/2757760




Do whatever you want to do man.

  

3267 posts

Uber Geek
+1 received by user: 121

Trusted

  Reply # 688969 20-Sep-2012 17:25 Send private message

btw. this vulnerability does not affects IE10. so for those on windows 8. need not worry




Do whatever you want to do man.

  

3233 posts

Uber Geek
+1 received by user: 638

Trusted
Microsoft NZ

  Reply # 688972 20-Sep-2012 17:27 Send private message

billgates: An update will be made available this friday via windows update but those who wish to fix it now, can download and run the fix it tool today.

http://support.microsoft.com/kb/2757760


Saturday it will be in our time zone :)

3267 posts

Uber Geek
+1 received by user: 121

Trusted

  Reply # 688973 20-Sep-2012 17:28 Send private message

ah yes sorry. the good old time zone.




Do whatever you want to do man.

  

Create new topic




Twitter »
Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





Trending now »

Hot discussions in our forums right now:

April Fools!
Created by BlueShift, last reply by jarledb on 1-Apr-2015 18:34 (39 replies)
Pages... 2 3


Semble SIM: compatible handsets
Created by DrDee, last reply by freitasm on 1-Apr-2015 18:16 (56 replies)
Pages... 2 3 4


Vodafone retention call- A Joke or April fool
Created by geekbhaji, last reply by Blanch on 1-Apr-2015 18:29 (27 replies)
Pages... 2


Is a deck hard to build?
Created by lissie, last reply by joker97 on 1-Apr-2015 17:34 (26 replies)
Pages... 2


Mighty Ape Easter Egg hunt 2015.
Created by daesha247, last reply by essceebird on 1-Apr-2015 18:35 (24 replies)
Pages... 2


Jeremy Clarkson reported as being sacked from top gear
Created by KiwiNZ, last reply by DravidDavid on 1-Apr-2015 18:35 (188 replies)
Pages... 11 12 13


New Lightbox website
Created by Lightbox, last reply by dclegg on 1-Apr-2015 16:54 (19 replies)
Pages... 2


Surface 3: anyone interested
Created by freitasm, last reply by lxsw20 on 1-Apr-2015 16:47 (19 replies)
Pages... 2



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.