Several Governments Warn Users To Switch To Chrome Or Firefox In Wake Of IE Exploit - HotHardware
Several Governments Warn Users To Switch To Chrome Or Firefox In Wake Of IE Exploit

Several Governments Warn Users To Switch To Chrome Or Firefox In Wake Of IE Exploit

If you haven't already, you should consider dropping Internet Explorer and using a browser like Chrome or Firefox, at least until Microsoft rolls out a fix for a zero day vulnerability that reportedly affects nearly every version of IE. Worse yet, if you're still stubbornly rocking Windows XP for whatever reason, this is potentially a permanent vulnerability -- Microsoft dropped support for the legacy operating system earlier this month.

The United States Computer Emergency Readiness Team (US-CERT) is one of several governments that suggests employing an alternate browser.

"US-CERT is aware of active exploitation of a use-after-free vulnerability in Microsoft Internet Explorer. This vulnerability affects IE versions 6 through 11 and could allow unauthorized remote code execution," US-CERT warns.

IE browser

Microsoft says it's aware of hackers using this vulnerability in targeted attacks, which is something security outfit FireEye Research Labs has seen. If you must use IE -- a requirement for work applications, for example -- be wary of clicking on links in instant messaging applications or in emails. One of the more common methods of exploiting this zero day bug is by convincing users to click on a URL that will bring them to a malicious website.

According to FishEye Research Labs, the exploit leverages a previously unknown use-after-free vulnerability, and uses a well-known Flash exploitation technique to achieve arbitrary memory access and bypass Windows' ASLR and DEP protections.

"This vulnerability, for which (at the time of writing) Microsoft has not yet issued a patch, affects Internet Explorer running on any version of the Windows Operating System although Microsoft has indicated that versions of Windows Server and Microsoft mail applications are protected to some degree," CERT-UK, the U.K. equivalent of US-CERT, stated in a blog post.
0
+ -

I did saw this on news on TV. I do use FireFox browser for now. Until Microsoft get IE fix soon. I rarely use IE but most of time I use Fire Fox. Thanks for put the post up about IE.

0
+ -

I would recommend for people to get Malwarebytes Anti-Exploit BETA if they are using windows xp or internet explorer or both.

0
+ -

i never use this shity browser i all ways use chrome i uninstall internet explorer

0
+ -

So you like having EVERYTHING you do online being spied upon by a ruthless and unaccountable advertising company? Well done.

0
+ -

I use Netscape Navigator Alpha.

+1
+ -

Firefox locked down so hard nothing runs without my say so.

0
+ -

meh, I'm still going to use it.

0
+ -

1st they drop XP and now they cant re work the browser...c',mon

0
+ -

Does anyone know if this effects Windows 7 Pro ???

0
+ -

I think I will ride it out !1

Login or Register to Comment
Post a Comment
Username:   Password: