Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




BDFL - Memuneh
57899 posts

Uber Geek
+1 received by user: 9502

Administrator
Trusted
Geekzone
Subscriber

Topic # 109333 18-Sep-2012 13:06 Send private message

It appears an Internet Explorer zero day vulnerability is being exploited in the wild now.

If you're using Internet Explorer 7, Internet Explorer 8 or Internet Explorer 9 make sure your AV is up-to-date. Or switch browsers.

Details here and here.

Note that switching browsers doesn't mean your new browser doesn't have other vulnerability - no software is 100% secure anyway.




Create new topic


BDFL - Memuneh
57899 posts

Uber Geek
+1 received by user: 9502

Administrator
Trusted
Geekzone
Subscriber

  Reply # 687806 18-Sep-2012 17:01 Send private message





3693 posts

Uber Geek
+1 received by user: 196

Trusted

  Reply # 687811 18-Sep-2012 17:16 Send private message

You can also install the EMET tool to protect from remote hackers exploiting this flaw.

http://www.microsoft.com/en-us/download/details.aspx?id=29851




Do whatever you want to do man.

  

 

 



gzt

8552 posts

Uber Geek
+1 received by user: 1065


Reply # 687831 18-Sep-2012 17:54 Send private message

Related to the recommendation in the US-CERT article - are not DEP + ASLR already enabled by default in 2K8 and later OS and IE8 forward?

It would be unusual if they were not enabled on those systems already right?

I'd find out but I'm still clearing space to virtualise windows on my mac ;  ).

12464 posts

Uber Geek
+1 received by user: 1382


  Reply # 687838 18-Sep-2012 18:11 Send private message

billgates: You can also install the EMET tool to protect from remote hackers exploiting this flaw.

http://www.microsoft.com/en-us/download/details.aspx?id=29851


I wonder why microsoft aren't pushing this update through as a windows update.



BDFL - Memuneh
57899 posts

Uber Geek
+1 received by user: 9502

Administrator
Trusted
Geekzone
Subscriber

  Reply # 687840 18-Sep-2012 18:15 Send private message

Because that is not the update to fix it, but a tool to harden the system.




19290 posts

Uber Geek
+1 received by user: 2647
Inactive user


  Reply # 687852 18-Sep-2012 19:19 Send private message

Would this not be covered under the CGA and you get sent a brand new computer?

:-P

gzt

8552 posts

Uber Geek
+1 received by user: 1065


  Reply # 687868 18-Sep-2012 19:58 Send private message

Microsoft advisory note is out..

http://technet.microsoft.com/en-us/security/advisory/2757760

"On completion of this investigation, Microsoft will take the appropriate action to protect our customers, which may include providing a solution through our monthly security update release process, or an out-of-cycle security update, depending on customer needs"

expect a patch.

3693 posts

Uber Geek
+1 received by user: 196

Trusted

  Reply # 688962 20-Sep-2012 17:16 Send private message

An update will be made available this friday via windows update but those who wish to fix it now, can download and run the fix it tool today.

http://support.microsoft.com/kb/2757760




Do whatever you want to do man.

  

3693 posts

Uber Geek
+1 received by user: 196

Trusted

  Reply # 688969 20-Sep-2012 17:25 Send private message

btw. this vulnerability does not affects IE10. so for those on windows 8. need not worry




Do whatever you want to do man.

  

4904 posts

Uber Geek
+1 received by user: 1307

Trusted
Microsoft

  Reply # 688972 20-Sep-2012 17:27 Send private message

billgates: An update will be made available this friday via windows update but those who wish to fix it now, can download and run the fix it tool today.

http://support.microsoft.com/kb/2757760


Saturday it will be in our time zone :)

3693 posts

Uber Geek
+1 received by user: 196

Trusted

  Reply # 688973 20-Sep-2012 17:28 Send private message

ah yes sorry. the good old time zone.




Do whatever you want to do man.

  

Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

IBM remote work recall a red herring
Posted 29-May-2017 19:15


RBI2 bidders at Rural Connectivity Symposium
Posted 29-May-2017 12:50


Edifier R1700BT speakers review: Luxury Bluetooth sounds
Posted 28-May-2017 13:06


National AI group launching next month
Posted 25-May-2017 09:54


New Zealand Digital Future, according to tech companies
Posted 25-May-2017 09:51


New Microsoft Surface Pro delivers outstanding battery life, performance
Posted 25-May-2017 09:34


Garmin VIRB 360 brings immersive 360-degree 5.7K camera experience
Posted 25-May-2017 09:30


Telecommunications monitoring report: Are you being served?
Posted 24-May-2017 11:54


NetValue partners with CRM Provider SugarCRM
Posted 23-May-2017 20:04


Terabyte looms as Vocus users download 430GB a month
Posted 19-May-2017 14:51


2degrees tips into profit after seven lean years
Posted 19-May-2017 09:47


2degrees growth story continues
Posted 17-May-2017 15:25


Symantec Blocks 22 Million Attempted WannaCry Ransomware Attacks Globally
Posted 17-May-2017 12:41


HPE Unveils Computer Built for the Era of Big Data
Posted 17-May-2017 12:39


Samsung Galaxy S8 Plus review: Beautiful, feature-packed
Posted 16-May-2017 20:14



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.