Microsoft Releases Out-of-Band Advisory for all Versions of Internet Explorer
Microsoft just released an advisory on an Internet Explorer vulnerability that would allow for remote execution. The report references public availability of details of his vulnerability. The long story short, a targetted attack that gets a user to view a malicious webpage (or malicious content on an otherwise safe webpage) could lead to memory corruption that could execute arbitrary code with the permissions of the logged in user. Two suggested actions are provided by Microsoft, apply the FixIt provided by Microsoft or deploy EMET 3.0/4.0 which provides generalized protection of memory (and probably not a bad idea to deploy anyway). Note, the FixIt ONLY applies to 32-bit versions of Internet Explorer.
This post will be updated with more details as the situation warrants.
--
John Bambenek
bambenek \at\ gmail /dot/ com
Bambenek Consulting
Comments
Anonymous
Sep 18th 2013
1 decade ago
Anonymous
Sep 18th 2013
1 decade ago
Anonymous
Sep 18th 2013
1 decade ago
Executed IE. It immediately crashed: "Program failed." Clicked "Cancel". Cancel failed. Clicked "X". X failed.
Using Processes Explorer, killed process. Kill Process worked as expected.
Executed IE a second time. Same result.
Using Control Panel, uninstalled EMET and EMET 4.0. Executed IE a third time. IE came up as expected. Advised client of greater risk without EMET. Client said, "Give me my (working) IE (with all my Favorites) and my Boggle".
Anonymous
Sep 18th 2013
1 decade ago
Anonymous
Sep 20th 2013
1 decade ago