light bulb

Did You Know?



Reply
Posts: 4,388
Topics: 2,734
Kudos: 5,391
Registered: ‎06-12-2013

Threat Con Yellow: Protection recommendation regarding Internet Explorer exploits in the wild

The Internet Storm Center is beginning to see increased evidence of exploits in the wild regarding Microsoft Security Advisory 2887505.  Accordingly, we're moving the InfoCon up to Yellow.
Per the advisory:
Microsoft is investigating public reports of a vulnerability in all supported versions of Internet Explorer. Microsoft is aware of targeted attacks that attempt to exploit this vulnerability in Internet Explorer 8 and Internet Explorer 9. Applying the Microsoft Fix it solution, CVE-2013-3893 Fix It Workaround, prevents the exploitation of this issue. This FixIt solution also includes EMET 4.0 guidance. Certainly consider use of EMET where you can.  Please note, the Fix It seems to only help 32-bit versions of browsers.
 
It appears that an exploit has been in the wild since August 29th, 2013 when it was first seen by one of the online security scanners.  There is some indication that a weaponized exploit may be in broader circulation now, so expect this to ramp up quickly.

 

Full Article

Sr. Community Leader

Posts: 8,452
Topics: 577
Kudos: 7,037
Registered: ‎02-03-2012

Re: Threat Con Yellow: Protection recommendation regarding Internet Explorer exploits in the wild

Thanks Jeff at least we have WSA to protect us if any malware tries using the Exploit and if anyone really uses IE anymore I do once or twice a day.

 

Daniel :smileywink:

coollogo_com-133794099.gif


asapvip.png  SigSVIP.png EPA.png


Webroot® SecureAnywhere™ Internet Security Complete Beta v8.0.7.33 on my main system Windows 7 Ultimate 64bit & on Win XP 32bit, Win Vista 32bit, Win 7 32bit, Win 8.1 Pro 32bit & 64bit, Win 10 Preview 32bit & 64bit Build 9926 all on VM's also on my HTC One M8 Android Lollipop 5.0.1 Phone v3.6.0.6652.


MVP.gif.png Microsoft® MVP Consumer Security


Twitter.png Untitled-1.png Community-Badges-BetaTester.png

Moderator
Posts: 1,126
Registered: ‎03-13-2013

Re: Threat Con Yellow: Protection recommendation regarding Internet Explorer exploits in the wild

In all fairness IE blocks more malware downloads than Firefox. I use Firefox as IE blocks most of the stuff I try to download :smileyhappy: