Overclock.net › Forums › Industry News › Software News › [ExtremeTech/ZDNet]Beware: All IE Versions Vulnerable To Attack
New Posts  All Forums:Forum Nav:

[ExtremeTech/ZDNet]Beware: All IE Versions Vulnerable To Attack

post #1 of 48
Thread Starter 
Microsoft has updated the security bulletin, the released last night for a new and serious Internet Explorer vulnerability. Initially it appeared that the vulnerability was only in Internet Explorer 7, but after further analysis it seems as if all currently-supported versions of IE are affected, including the betas of IE8.'


click on image to full view

The confusion may have come from the fact that the current attacks which brought the episode to light are IE7 specific. But further research shows that the underlying vulnerability is not.

Microsoft also added a number of new workarounds to the advisory. This list includes the old ones and the new ones:
  • Set Internet and Local intranet security zone settings to "High"
  • Disable Active Scripting or set IE to prompt for it
  • Enable DEP (only hardware DEP will help)
  • Use ACL to disable OLEDB32.DLL
  • Unregister OLEDB32.DLL
  • Disable Data Binding support in Internet Explorer 8

See the advisory for details on these workarounds. Does anyone else think that the bug is in OLEDB32.DLL?

On a separate note, a report from the Internet Storm Center shows that the attack is being spread to Web sites through SQL injection attacks that have been popular among the malware set for some time.

Source: ExtremeTech

Edit to add: I saw this posted yesterday
Quote:
Originally Posted by Kuntz View Post
Looks like there is a patch already out on Windows Update.
And wanted to point out from another source:

Quote:
The next official Patch Tuesday isn’t until January 9, 2009 but I’ve heard whispers that we’ll see a patch for this vulnerability out this side of the holidays.

Take care out there … especially if you’re still using IE!
ZDNet

Anyway, good luck IE users =]
Edited by Miki - 12/15/08 at 2:06am
post #2 of 48
IE Fail?

Not the first time.
post #3 of 48
Looks like there is a patch already out on Windows Update.
Watercooler
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 D0 @ 4400MHz [24/7] X58 Classified 3870 Toxic Dominator GT 1680 [6-6-5-16] 
Hard DriveOptical DriveOSMonitor
7200.12 - 500GB [RAID 1] Plextor PX-7555A Windows 7 Samsung 2343BWX 2048x1152 
KeyboardPowerCaseMouse
Logitech G19 Corsair HX850W Silverstone TJ07 Logitech G9 
Mouse Pad
Fragmat 
  hide details  
Reply
Watercooler
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 D0 @ 4400MHz [24/7] X58 Classified 3870 Toxic Dominator GT 1680 [6-6-5-16] 
Hard DriveOptical DriveOSMonitor
7200.12 - 500GB [RAID 1] Plextor PX-7555A Windows 7 Samsung 2343BWX 2048x1152 
KeyboardPowerCaseMouse
Logitech G19 Corsair HX850W Silverstone TJ07 Logitech G9 
Mouse Pad
Fragmat 
  hide details  
Reply
post #4 of 48
lol. IE is fundamentally flawed and this is proof of that.
Boot to the Head!
(13 items)
 
  
CPUMotherboardGraphicsRAM
Athlon64 X2 4200+ @ stock Epox 9NPA+SLI XFX 8800GS 384 4x1GB G.Skill DDR400 @ stock 
Hard DriveOptical DriveOSMonitor
120GB WD + 1TB WD GP + 320GB WD AAJS Mystery DVD-RW Vista Ultimate x64! ViewSonic P220F CRT + KDS 15" CRT 
KeyboardPowerCaseMouse
$3 Compaq keyboard with pretty aluminum finish ThermalTake PurePower 500W Rosewill R230-P-BK Wired Optical 
Mouse Pad
Table. Mouse pads are overrated 
  hide details  
Reply
Boot to the Head!
(13 items)
 
  
CPUMotherboardGraphicsRAM
Athlon64 X2 4200+ @ stock Epox 9NPA+SLI XFX 8800GS 384 4x1GB G.Skill DDR400 @ stock 
Hard DriveOptical DriveOSMonitor
120GB WD + 1TB WD GP + 320GB WD AAJS Mystery DVD-RW Vista Ultimate x64! ViewSonic P220F CRT + KDS 15" CRT 
KeyboardPowerCaseMouse
$3 Compaq keyboard with pretty aluminum finish ThermalTake PurePower 500W Rosewill R230-P-BK Wired Optical 
Mouse Pad
Table. Mouse pads are overrated 
  hide details  
Reply
post #5 of 48
IE fails.
post #6 of 48
IE is the most vulnerable and virus-prone browser in the history of teh interwebz.
●๑۩۩๑●
(14 items)
 
  
CPUMotherboardGraphicsRAM
i5 2500K @ 4.4GHz (1.34v) Gigabyte P67A-UD4-B3 Gigabyte GTX 470 SOC @ 825MHz 4GB Corsair Vengeance DDR3 1600MHz (CL8) 
Hard DriveCoolingOSMonitor
Samsung Spinpoint F3 1TB Cooler Master Hyper N520 Windows 7 Ultimate x64 SP1 ASUS VH236H 23" 1080p | 2ms 
PowerCaseAudio
Corsair TX650w (V1) Xigmatek Utgard X-Fi Titanium Fatal1ty 
  hide details  
Reply
●๑۩۩๑●
(14 items)
 
  
CPUMotherboardGraphicsRAM
i5 2500K @ 4.4GHz (1.34v) Gigabyte P67A-UD4-B3 Gigabyte GTX 470 SOC @ 825MHz 4GB Corsair Vengeance DDR3 1600MHz (CL8) 
Hard DriveCoolingOSMonitor
Samsung Spinpoint F3 1TB Cooler Master Hyper N520 Windows 7 Ultimate x64 SP1 ASUS VH236H 23" 1080p | 2ms 
PowerCaseAudio
Corsair TX650w (V1) Xigmatek Utgard X-Fi Titanium Fatal1ty 
  hide details  
Reply
post #7 of 48
Ive been using IE cuz Ive been to lazy to d/l firefox. I have no issues with it. Other than when you open a new tab it doesn't go to your homepage.
Black Box
(16 items)
 
  
CPUMotherboardGraphicsRAM
i7 3770k Asus P8Z77-Vpro Evga 780 Classified Crucial Ballistix 
Hard DriveHard DriveOptical DriveCooling
A-Data 128GB SSD Samsung Spinpoint F3 1TB Pioneer BDR-207DBK Corsair H80 
OSMonitorKeyboardPower
Win 7 pro 64 Hannspree 25" 1080p LCD 2ms Razer Lycosa PC Power & Cooling 760w 
CaseMouseMouse PadAudio
Corsair 550D MX 518 Allsop Creative XFi Xtreme music 
  hide details  
Reply
Black Box
(16 items)
 
  
CPUMotherboardGraphicsRAM
i7 3770k Asus P8Z77-Vpro Evga 780 Classified Crucial Ballistix 
Hard DriveHard DriveOptical DriveCooling
A-Data 128GB SSD Samsung Spinpoint F3 1TB Pioneer BDR-207DBK Corsair H80 
OSMonitorKeyboardPower
Win 7 pro 64 Hannspree 25" 1080p LCD 2ms Razer Lycosa PC Power & Cooling 760w 
CaseMouseMouse PadAudio
Corsair 550D MX 518 Allsop Creative XFi Xtreme music 
  hide details  
Reply
post #8 of 48
^You can make it so it does open your homepage evry time you open a new tab. It's in Internet Options -> tabbed browsing.

I like IE personally. I tried FF and Chrome and hated them both. Right now I'm using Opera and it's not bad. Only reason I'm not currently using IE is because it's freezing on me constantly and I'm not sure why, has been for a week or more.
My Money Pit
(18 items)
 
  
CPUMotherboardGraphicsRAM
FX8120 Asus Crosshair V Formula Daimond HD 7970 Corsair Vengence 
Hard DriveHard DriveHard DriveOptical Drive
Samsung 830 SSD OCZ Vertex 2 SSD Seagate ST350063  LG WH10LS30 BluRay  
CoolingOSMonitorKeyboard
Custom Water Cooling  Windows7 Home Premium 64 Samsung 2232GW Flatpanel Logitech G15 
PowerCaseMouseMouse Pad
PCP&C Turbo-Cool 850 Cooler Master HAF-932 Razer Copperhead Razer Exactmat 
AudioAudio
Onboard Optical to D/A converter to headphone a... Razer Barracuda AC-1 to Onkyo HT setup 
  hide details  
Reply
My Money Pit
(18 items)
 
  
CPUMotherboardGraphicsRAM
FX8120 Asus Crosshair V Formula Daimond HD 7970 Corsair Vengence 
Hard DriveHard DriveHard DriveOptical Drive
Samsung 830 SSD OCZ Vertex 2 SSD Seagate ST350063  LG WH10LS30 BluRay  
CoolingOSMonitorKeyboard
Custom Water Cooling  Windows7 Home Premium 64 Samsung 2232GW Flatpanel Logitech G15 
PowerCaseMouseMouse Pad
PCP&C Turbo-Cool 850 Cooler Master HAF-932 Razer Copperhead Razer Exactmat 
AudioAudio
Onboard Optical to D/A converter to headphone a... Razer Barracuda AC-1 to Onkyo HT setup 
  hide details  
Reply
post #9 of 48
thats why I use firefox.
Finally Perfected
(13 items)
 
  
CPUMotherboardGraphicsRAM
E8500@ 4.6Ghz @ 1.36V Gigabyte P45 Two Sapphire 4870's CFX 1066MHz Dominators 
Hard DriveOSMonitorPower
500GB and 160GB Windows XP Professional SP2 Samsung SyncMaster 2253bw Corsair 750watt 
CaseMouseMouse Pad
Antec 1200 G5 Rocketfish 
  hide details  
Reply
Finally Perfected
(13 items)
 
  
CPUMotherboardGraphicsRAM
E8500@ 4.6Ghz @ 1.36V Gigabyte P45 Two Sapphire 4870's CFX 1066MHz Dominators 
Hard DriveOSMonitorPower
500GB and 160GB Windows XP Professional SP2 Samsung SyncMaster 2253bw Corsair 750watt 
CaseMouseMouse Pad
Antec 1200 G5 Rocketfish 
  hide details  
Reply
post #10 of 48
I'm a supporter of Firefox but *cough* http://www.overclock.net/software-ne...s-up-most.html
Flying Phoenix
(13 items)
 
  
CPUMotherboardGraphicsRAM
Core i7 940 @3.8ghz EVGA x58 2x GTX280 Dual SLI 6GB OCZ Platinum 
Hard DriveOSMonitorKeyboard
2x 150GB Velociraptors RAID 0 + 320GB Backup Drive Windows 7 64 27.5" Hanns G Logitech G15 
PowerCaseMouseMouse Pad
1200w Antec 1200 Logitech G5 XTrac Ripper 
  hide details  
Reply
Flying Phoenix
(13 items)
 
  
CPUMotherboardGraphicsRAM
Core i7 940 @3.8ghz EVGA x58 2x GTX280 Dual SLI 6GB OCZ Platinum 
Hard DriveOSMonitorKeyboard
2x 150GB Velociraptors RAID 0 + 320GB Backup Drive Windows 7 64 27.5" Hanns G Logitech G15 
PowerCaseMouseMouse Pad
1200w Antec 1200 Logitech G5 XTrac Ripper 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Software News
Overclock.net › Forums › Industry News › Software News › [ExtremeTech/ZDNet]Beware: All IE Versions Vulnerable To Attack