Internet Explorer Zero Day Vulnerability

Geekzone Status | Geekzone User IP information | NZ Cell Sites Map | Amazon order page (Kindle, books, electronics)

Welcome Guest.

You haven't logged in yet. If you don't have an account you can register now.

Forums › Microsoft Windows › Internet Explorer Zero Day Vulnerability

freitasm

BDFL
43789 posts

Uber Geek

Administrator

Trusted

Geekzone

Subscriber

Topic # 109333 18-Sep-2012 13:06
It appears an Internet Explorer zero day vulnerability is being exploited in the wild now. If you're using Internet Explorer 7, Internet Explorer 8 or Internet Explorer 9 make sure your AV is up-to-date. Or switch browsers. Details here and here. Note that switching browsers doesn't mean your new browser doesn't have other vulnerability - no software is 100% secure anyway. Mauricio Freitas (Geekzone Admin, Devil's Advocate, my blog, technology disclosure, my tweets, Web Performance Optimization) Geekzone Price comparison \| Amazon Kindle order page \| How to get the best out of Geekzone \| New Zealand IT Jobs \| Geekzone News \| Jinglebugs

freitasm

BDFL
43789 posts

Uber Geek

Administrator

Trusted

Geekzone

Subscriber

Reply # 687806 18-Sep-2012 17:01
And here is the Microsoft Advisory (KB2757760). Mauricio Freitas (Geekzone Admin, Devil's Advocate, my blog, technology disclosure, my tweets, Web Performance Optimization) Geekzone Price comparison \| Amazon Kindle order page \| How to get the best out of Geekzone \| New Zealand IT Jobs \| Geekzone News \| Jinglebugs

billgates

2555 posts

Uber Geek

Trusted

Reply # 687811 18-Sep-2012 17:16
You can also install the EMET tool to protect from remote hackers exploiting this flaw. http://www.microsoft.com/en-us/download/details.aspx?id=29851 Microsoft\|Outlook\|Skydrive\|Windows Live Admin Center\|Skype\|Office Web Apps\|Office 365\| Windows Phone\|Windows 8\|Xbox\|Hyper-V\|Office2013\|Bing\|Security Essentials\|Server 2012

gzt

3203 posts

Uber Geek

Subscriber

Reply # 687831 18-Sep-2012 17:54
Related to the recommendation in the US-CERT article - are not DEP + ASLR already enabled by default in 2K8 and later OS and IE8 forward? It would be unusual if they were not enabled on those systems already right? I'd find out but I'm still clearing space to virtualise windows on my mac ; ).

mattwnz

4269 posts

Uber Geek

Reply # 687838 18-Sep-2012 18:11
billgates: You can also install the EMET tool to protect from remote hackers exploiting this flaw. http://www.microsoft.com/en-us/download/details.aspx?id=29851 I wonder why microsoft aren't pushing this update through as a windows update.

freitasm

BDFL
43789 posts

Uber Geek

Administrator

Trusted

Geekzone

Subscriber

Reply # 687840 18-Sep-2012 18:15
Because that is not the update to fix it, but a tool to harden the system. Mauricio Freitas (Geekzone Admin, Devil's Advocate, my blog, technology disclosure, my tweets, Web Performance Optimization) Geekzone Price comparison \| Amazon Kindle order page \| How to get the best out of Geekzone \| New Zealand IT Jobs \| Geekzone News \| Jinglebugs

johnr

13325 posts

Uber Geek

Trusted

Vodafone NZ

Subscriber

Reply # 687852 18-Sep-2012 19:19
Would this not be covered under the CGA and you get sent a brand new computer? :-P Systems Engineer Vodafone NZ http://forum.vodafone.co.nz

gzt

3203 posts

Uber Geek

Subscriber

Reply # 687868 18-Sep-2012 19:58
Microsoft advisory note is out.. http://technet.microsoft.com/en-us/security/advisory/2757760 "On completion of this investigation, Microsoft will take the appropriate action to protect our customers, which may include providing a solution through our monthly security update release process, or an out-of-cycle security update, depending on customer needs" expect a patch.

billgates

2555 posts

Uber Geek

Trusted

Reply # 688962 20-Sep-2012 17:16
An update will be made available this friday via windows update but those who wish to fix it now, can download and run the fix it tool today. http://support.microsoft.com/kb/2757760 Microsoft\|Outlook\|Skydrive\|Windows Live Admin Center\|Skype\|Office Web Apps\|Office 365\| Windows Phone\|Windows 8\|Xbox\|Hyper-V\|Office2013\|Bing\|Security Essentials\|Server 2012

billgates

2555 posts

Uber Geek

Trusted

Reply # 688969 20-Sep-2012 17:25
btw. this vulnerability does not affects IE10. so for those on windows 8. need not worry Microsoft\|Outlook\|Skydrive\|Windows Live Admin Center\|Skype\|Office Web Apps\|Office 365\| Windows Phone\|Windows 8\|Xbox\|Hyper-V\|Office2013\|Bing\|Security Essentials\|Server 2012

nathan

946 posts

Ultimate Geek

Trusted

Microsoft NZ

Reply # 688972 20-Sep-2012 17:27
billgates: An update will be made available this friday via windows update but those who wish to fix it now, can download and run the fix it tool today. http://support.microsoft.com/kb/2757760 Saturday it will be in our time zone :)

Follow us to receive Twitter updates when new discussions are posted in our forums:

Follow @geekzonenzforum

Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:

Follow @geekz1

Follow us to receive Twitter updates when new jobs are posted to our jobs board:

Follow @geekzonenzjobs

Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:

Follow @geekzoneprices

News »

Amazon brings Kindle Fire to 170 countries, expand app store to more than 200 countries
Posted 24-May-2013 14:41

Gen-i and SAP partner in mobile business
Posted 23-May-2013 09:23

Ericsson to close down telecom cable manufacturing
Posted 23-May-2013 08:46

FaceToFace Communications and StarLeaf bring unique cloud-based videoconferencing to Australia and New Zealand
Posted 22-May-2013 09:12

IBM Watson finds a new job: customer services
Posted 22-May-2013 08:37

Microsoft unveils Xbox One
Posted 22-May-2013 08:11

Trending now »

Hot discussions in our forums right now:

Fecked up religious people strike again :-(
Created by Mark, last reply by freitasm on 25-May-2013 08:44 (85 replies)

... 4 5 6

Cannabis is illegal yet we have really strong 'legal highs' ?
Created by qwerty7, last reply by freitasm on 23-May-2013 23:20 (74 replies)

... 3 4 5

Xbox One
Created by DjShadow, last reply by Kingy on 24-May-2013 13:48 (68 replies)

... 3 4 5

A new project coming to Geekzone
Created by freitasm, last reply by l43a2 on 24-May-2013 23:02 (342 replies)

... 21 22 23

Troublesome transition to VDSL
Created by oseiler, last reply by michaelmurfy on 24-May-2013 13:57 (18 replies)

... 2

HTC One (2013) owners' discussion
Created by Dingbatt, last reply by mrgsm021 on 25-May-2013 11:55 (1566 replies)

... 103 104 105

Monolithic Cement Sheet cladding mid 80s house - "leaky home" or not?
Created by joker97, last reply by mattwnz on 24-May-2013 23:46 (15 replies)

Warning - Users with Tenda ADSL modem
Created by Psi, last reply by Psi on 24-May-2013 22:01 (44 replies)

... 2 3

Geekzone Jobs »

Most recent NZ jobs in technology:

Security Analyst
Posted 25-May-2013 09:28

Java Developer
Posted 25-May-2013 09:28

Senior IT Business Analyst
Posted 25-May-2013 09:28

Systems Engineer
Posted 25-May-2013 09:28

Organisational Change Analyst
Posted 24-May-2013 19:28

Dedicated Java Developer/ Technical lead
Posted 24-May-2013 18:28

Account Manager - IT/Telco
Posted 24-May-2013 18:28

Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.

RSS feeds: Main feed; Forums feed; Tech Jobs feed; All RSS feeds

Site features: Geekzone Mobile; @GeekzoneMail; Geekzone Badges; Geekzone on Twitter

Geekzone offers: Amazon orders (Kindle, books, everything); MightyApe orders; Free technology white papers

Site Information: Subscribe to Geekzone; Privacy Statement; Forum Usage Guidelines (FUG); Advertising on Geekzone; Trademark and copyright