drjbhl
Ramblings of an old Doc
MS Security Advisory on IE Exploit Update 1
Published on April 27, 2014 By DrJBHL In Personal Computing

 

A weekend blog post from MS about this. Not common at all.

This exploit would allow remote code execution if one visits an affected website, after browser compromise through email or even IM.

IE 10 and 11 are protected from this if they have “Enhanced Protection Mode” turned on. You are also protected if you have EMET 4.1 or 5.0 Tech Preview installed.

“Microsoft says that PC owners should always enable their personal firewall, make sure to have all of the latest software updates for their programs, and have all the most recent anti-virus and anti-malware definitions.

Finally, Microsoft said, " ... we encourage everyone to exercise caution when visiting websites and avoid clicking suspicious links, or opening email messages from unfamiliar senders." The blog did not have any information on when Microsoft will release a patch that will close this latest IE exploit.” – Neowin

 

Update 1:


MS has confirmed the security hole and workarounds - read more here:

http://www.neowin.net/news/microsoft-confirms-workarounds-for-internet-explorers-major-vulnerability


Source:

http://www.neowin.net/news/microsoft-issues-security-advisory-for-internet-explorer-exploit


Popular Articles in this Category
Safe and free software download sites for windows
Keep an Eye Out!
A new and more functional PC Manager widget from MS
Popular Articles from DrJBHL
Safe and free software download sites for windows
A new and more functional PC Manager widget from MS
Comments (Page 3)
4 Pages1 2 3 4 
31
HG_Eliminator
on Apr 30, 2014

DrJBHL
reply 30


Quoting RedneckDude, reply 28

Quoting DrJBHL, reply 27confermed? 

Despite trying to disguise yourself as Jafo, the sheep standing next to you is a dead give away, Jim.

 

 


 

 

hehe

32
RedneckDude
on Apr 30, 2014

DrJBHL
reply 30
Despite trying to disguise yourself as Jafo, the sheep standing next to you is a dead give away, Jim.

 

 

 

 

 

 

 

 

 

 

33
Wizard1956
on Apr 30, 2014

Before you all start thinking switching browsers will make you "safe".......

http://www.eweek.com/security/pwn2own-2014-claims-ie-chrome-safari-and-more-firefox-zero-days.html 

Unplug now! Don't let THIS happen to you!

 

34
DrJBHL
on Apr 30, 2014

Wiz...as you know, the OP related only to a certain defect and exploit in IE.

Other browsers have their weak points, but... WhiteHat Aviator is an especially strong one.

35
Uvah
on Apr 30, 2014

 

36
Wizard1956
on Apr 30, 2014

DrJBHL
reply 34
WhiteHat Aviator is an especially strong one
It appears so. It at least takes some of the guesswork out of what extensions are best to enhance Chrome's security. 

37
DrJBHL
on Apr 30, 2014

Which is a blessing...and it really does take active steps to prevent hacking as well as stripping urls. 

Better than regular Chrome. Also it's a fast sob.

38
PoSmedley
on Apr 30, 2014

Isn't a big part of the problem is that IE is one of (if not the the number one) targeted browser for hackers? I think they rely/count on the majority of the uninformed to be using it for all their personal stuff ?

All the popular browsers have their own issues. I just know how hard it was getting my wife to switch to anything other than IE because it was just outside her comfort zone at the time. Now I am trying to get her to try Chrome and it's the same thing all over again.

I think hackers count on people new to computers and going on line to start and stick with IE and not know how to protect themselves until they've actually become victims of these exploits, etc.

39
Philly0381
on May 01, 2014

I just checked Windows Update and I had a Security Update for IE 10.  In looking at the description it would appear that this is an update for this threat.  Looks like MS decided to push the fix out quicker than stated. 

 

EDIT:  I found this on Major Geeks.  http://www.majorgeeks.com/news/story/microsoft_issues_patch_for_ieincludes_security_update_for_xp.html

 

40
Uvah
on May 01, 2014

So XP get's a reprieve. Not too shabby.

41
DaveRI
on May 01, 2014

Philly0381
reply 39
I found this on Major Geeks

Ya thanks for mentioning that Philly.  That was nice of MS, I really hadn't expected it (and I can't expect another).

 

42
Aussie007
on May 01, 2014

Received a patch this morning KB2964358

 

Cheers

 

Macca

43
DrJBHL
on May 01, 2014

PoSmedley
reply 38

Isn't a big part of the problem is that IE is one of (if not the the number one) targeted browser for hackers? I think they rely/count on the majority of the uninformed to be using it for all their personal stuff ?

All the popular browsers have their own issues. I just know how hard it was getting my wife to switch to anything other than IE because it was just outside her comfort zone at the time. Now I am trying to get her to try Chrome and it's the same thing all over again.

I think hackers count on people new to computers and going on line to start and stick with IE and not know how to protect themselves until they've actually become victims of these exploits, etc.

Yes...and it has a goodly sized market share of unsophisticated users.

 

44
Philly0381
on May 02, 2014

I suppose that the IE updates yesterday broke the emoticons in the forums? 

45
DrJBHL
on May 02, 2014

Only one way to know for sure, Philly. Roll them back one at a time and check...

4 Pages1 2 3 4 
Meta
Views
» 53815
Comments
» 50
Category
» Personal Computing
Comment
Recent Article Comments
Let's see your political mem...
LightStar Design Windowblind...
Let's start a New Jammin Thr...
A day in the Life of Odditie...
Safe and free software downl...
Veterans Day
A new and more functional PC...
Post your joy
AI Art Thread: 2022
WD Black Internal and Extern...
Sponsored Links
Terms of Service Privacy Policy About Us Contact Us Stardock.com
© 2024 Stardock Corporation. All rights reserved.
JoeUser v1.0.0.0