Internet Explorer 8 Zero-Day,Microsoft Security Advisory (2847140)

Internet Explorer 8 Zero-Day,Microsoft Security Advisory (2847140)

Microsoft Security Advisory (2847140)
Vulnerability in Internet Explorer Could Allow Remote Code Execution

Published: Friday, May 03, 2013

http://technet.microsoft.com/en-us/security/advisory/2847140

Version: 1.0

Microsoft is investigating public reports of a vulnerability in Internet Explorer 8. Microsoft is aware of attacks that attempt to exploit this vulnerability.

Internet Explorer 6, Internet Explorer 7, Internet Explorer 9, and Internet Explorer 10 are not affected by the vulnerability.

This is a remote code execution vulnerability. The vulnerability exists in the way that Internet Explorer accesses an object in memory that has been deleted or has not been properly ……

[[[ Basically you can upgrade to version 9, or if you want to keep Version 8 then open Internet Options (Tools tab on browser or in Control Panel – click Classic View to see this) and click the Security Tab and shove the slide bar on left all the way up to HIGH which now stops all kinds of scripts at webpages and Active X and embedded autorun media players and etc etc etc. Keep quality antimalware installed and up to date as the only protection then – Real Time Protection heuristics or sometimes called HIPS etc. You can always retrograde back to Version 8 after an Emergency Out Of Cycle Patch/Fix is issued by Microsoft through Windows Updates and then Apply.
gerald philly pa usa ]]]

PRESS:

New Internet Explorer 8 Zero-Day Used in Watering Hole Attack …
www.symantec.com/…/new-internet-explorer-8-zero-day-used-watering-hole-attack
6 hours ago … Symantec helps consumers and organizations secure and manage their
information-driven world. Our software and services protect against …
http://www.symantec.com/connect/blogs/new-internet-explorer-8-zero-day-used-watering-hole-attack

Microsoft admits zero-day bug in IE8, pledges patch – Computerworld
www.computerworld.com/…/Microsoft_admits_zero_day_bug_in_IE8_pledges_patch
18 hours ago … Computerworld – Microsoft late Friday confirmed that a “zero-day,” or unpatched,
vulnerability exists in Internet Explorer 8 (IE8), the company’s …
http://www.computerworld.com/s/article/9238922/Microsoft_admits_zero_day_bug_in_IE8_pledges_patch

Zero-Day Exploit Enabled Cyber-Attack on U.S. Labor Department – eWeekeWeek
In the latest incident of nation-state cyber-attacks, attackers slipped malware onto the agency’s site, apparently aiming to compromise nuclear-energy officials from the Department of Energy. Hackers compromised the U.S. Department of Labor’s Web site …
http://www.eweek.com/security/zero-day-exploit-enabled-cyber-attack-on-us-labor-department/

Internet Explorer zero-day exploit targets nuclear weapons researchers
Ars Technica
Attackers exploited a previously unknown and currently unpatched
security bug in Microsoft’s Internet Explorer browser to surreptitiously
install malware on the computers of federal government workers involved
in nuclear weapons research, researchers …
http://arstechnica.com/security/2013/05/internet-explorer-zero-day-exploit-targets-nuclear-weapons-researchers/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+arstechnica%2Findex+

<http://arstechnica.com/security/2013/05/internet-explorer-zero-day-exploit-targets-nuclear-weapons-researchers/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+arstechnica%2Findex+>

Advertisements
%d bloggers like this: