Microsoft Confirms Internet Explorer Zero-day

Microsoft started to develop a new patch for a 0-day in all supported versions of Internet Explorer. The main impact of the vulnerability is remote code execution.

The new Microsoft security advisory 2488013 alert users that the vulnerability exists due to the creation of uninitialized memory during a CSS function within Internet Explorer. As a result it is possible under certain conditions for the memory to be leveraged by an attacker using a specially crafted Web page to gain remote code execution.

On the other side Metasploit , has released an exploit for the vulnerability using known techniques bypass ASLR (Address Space Layout Randomization) and bypass DEP (Data Execution Prevention), which are used to prevent execution of malicious code in IE.

According to Sophos, as a workaround it is possible to use Microsoft’s Enhanced Mitigation Experience Toolkit (EMET). With this tool, you can force named applications to perform ASLR on every DLL they load, whether the DLL wants it or not.

This makes it very much less likely that a remote exploit based on hard-wired addresses will succeed.

make sure you subscribe to my RSS feed!

Share
Subscribe
Notify of
guest
11 Comments
Oldest
Newest Most Voted
Inline Feedbacks
View all comments
trackback

[…] This post was mentioned on Twitter by Jovi Umawing and others. Jovi Umawing said: [SecTechno] Microsoft Confirms Internet Explorer Zero-day http://bit.ly/gzgyrp #security […]

trackback

RT @Sectechno Microsoft Confirms Internet Explorer Zero-day http://bit.ly/got4Y8

trackback

RT @sectechno: #Microsoft Confirms Internet Explorer Zero-day http://bit.ly/ha84sd #security #infosec

trackback

RT @sectechno: #Microsoft Confirms Internet Explorer Zero-day http://bit.ly/ha84sd #security #infosec

trackback

Microsoft Confirms Internet Explorer Zero-day: [sectechno.com] started to develop a new patch for a 0-day in all… http://dlvr.it/CCzXw

trackback

Microsoft Confirms Internet Explorer Zero-day: Source: http://www.sectechno.com — Monday, December 27, 2010Microsoft … http://bit.ly/gzgyrp

trackback

RT @yo9fah_ro: RT @Sectechno Microsoft Confirms Internet Explorer Zero-day http://bit.ly/got4Y8

trackback

RT @Sectechno Microsoft Confirms Internet Explorer Zero-day http://bit.ly/got4Y8

trackback
trackback

#Microsoft Confirms Internet Explorer Zero-day: Microsoft started to develop a new patch for… http://goo.gl/fb/mnhmo

trackback

[SecTechno] Microsoft Confirms Internet Explorer Zero-day http://bit.ly/gzgyrp #security