Security Alerts




Install IE FixIT to Avoid Zero Day Attack

Summary: This vulnerability affects:  Probably all current versions of Internet Explorer (IE), but the targeted exploit only affects IE 8 and 9 How an attacker exploits it:  By enticing one of your users to visit a web page containing malicious content Impact:  In the worst case, an attacker can execute code on your user’s computer, potentially gaining complete control of it What to do:  Apply Microsoft’s IE FixIt, or consider the other workarounds below Exposure: Today, Microsoft released a critical out-of-cycle  security advisory  warning customers of a serious new zero day vulnerability affecting Internet Explorer (IE), which attackers are currently exploiting in the wild. The flaw likely affects all current versions of IE (6-11), but Microsoft claims the targeted attack only goes after IE 8 and 9 users. The early advisory doesn’t describe the vulnerability in much technical detail, but what it does describe sounds very much like a  “ use after free ” vulnerability involving the way IE handles certain HTML objects.

Source:
Install IE FixIT to Avoid Zero Day Attack
September 17, 2013 — Category: Security Alerts