 OlegBellsouth FastaccessPremium
join:2003-12-08
Birmingham, AL
kudos:2 | reply to slajoh01
Re: IE Zero-Day Exactly. There is no point of upgrading to IE 9 or 10. Thing is a lot of companies have a crazy policy that does not allow to go with any other browser, but freaking IE. |
|
| reply to trparky
Why do large corporations still use IE as their main browser instead of using Firefox or Chrome if IE is that bad?
Also, If MS is not rolling out the patch on Tues, then we have two options basically. Use another browser, or upgrade to IE 9 and 10.
I am not upgrading to 9 or 10. They will have security flaws anyway...Im seriously thinking about using FF as my main browser. Im thinking of it very very much.
How about the rest of you? Are u guys willing to move to a different browser after this mess? |
|
 trparkyApple... YUMPremium,MVM
join:2000-05-24
Cleveland, OH
kudos:2 | reply to StuartMW
Then Microsoft is wrong, I have EMET working on Windows 8 just fine. |
|
 StuartMWWho Is John Galt?Premium
join:2000-08-06
Galt's Gulch
kudos:2
 ·CenturyLink
1 edit | reply to antdude
said by antdude:It could be one of those out of the bound (OOTB) releases.
I think you mean Out Of Band 
Out Of Bounds is usually sports related 
--
Don't feed trolls--it only makes them grow! |
|
StuartMWWho Is John Galt?Premium
join:2000-08-06
Galt's Gulch
kudos:2 | reply to Smokey Bear
W8 has EMET (under another name?) built-in. Besides W8 comes with IE10 which isn't vulnerable. |
|
 Smokey Bearveritas odium paritPremium
join:2008-03-15
Annie's Pub
kudos:4 | reply to DevilFrank
According to MS, EMET will not work with W8. |
|
Reviews:
·T-Com
| reply to Smokey Bear
said by Smokey Bear: said by chachazz:
You might want to take a second look at the diary published this week that is using EMET 3.5 as another tool to help defend your Windows systems against various attacks.
[3] »isc.sans.edu/diary.html?storyid=14797
Thanks chachazz  , valuable info in your post. The use of EMET is highly recommendable and SANS explains very well. But will it work on W8 properly? Can´t find a version for it.
--
Regards from Germany. Please excuse my stumbling English |
|
Smokey Bearveritas odium paritPremium
join:2008-03-15
Annie's Pub
kudos:4 | reply to chachazz
said by chachazz:
You might want to take a second look at the diary published this week that is using EMET 3.5 as another tool to help defend your Windows systems against various attacks.
[3] »isc.sans.edu/diary.html?storyid=14797
Thanks chachazz , valuable info in your post. The use of EMET is highly recommendable and SANS explains very well.
--
»bit.ly/gUqYaH - C. Brian Smith: Think of the exclamation point as a car horn: a little goes a long way. Lay on it too hard and everyone’s going to think you’re a moron. |
|
| reply to antdude
I dont get it....Why do large corporations still use IE as their main browser instead of using Firefox or Chrome if IE is that bad? |
|
|
|
 antdudeA Ninja AntPremium,VIP
join:2001-03-25
United State
kudos:4
 ·RoadRunner Cable
| reply to therube
It could be one of those out of the bound (OOTB) releases.
--
Ant @ AQFL.net and AntFarm.ma.cx. Please do not IM/e-mail me for technical support. Use this forum or better, »community.norton.com ! Disclaimer: The views expressed in this posting are mine, and do not necessarily reflect the views of my employer. |
|
| reply to Smokey Bear
|
|
 siljalineI'm lovin' that double widePremium
join:2002-10-12
Montreal, QC
kudos:17 | reply to Smokey Bear
Researchers Bypass Microsoft Fixit for IE Zero Day |
|
| reply to Smokey Bear
Absolutely essential info. Thank you very much Smokey Bear . Microsoft should be burning the midnight oil over this one.
quote:
After posting our analysis of the current 0day in Internet Explorer which was used in a “watering hole” style attack hosted on the Council for Foreign Relations website, we decided to take a look at the Fix It patch made available by Microsoft to address the vulnerability.
After less than a day of reverse engineering, we found that we were able to bypass the fix and compromise a fully-patched system with a variation of the exploit we developed earlier this week.
We have included details on the bypass to customers of our intelligence feeds and will notify Microsoft of the issue. In practice with coordinated vulnerability disclosure, we intend to update this post with details when Microsoft has addressed the problematic patch.
|
|
Smokey Bearveritas odium paritPremium
join:2008-03-15
Annie's Pub
kudos:4 | reply to siljaline
said by siljaline :
Some slight duplication of effort never hurt anybody. Better than no information • voila
|
|
siljalineI'm lovin' that double widePremium
join:2002-10-12
Montreal, QC
kudos:17 Reviews:
·Bell Sympatico
| reply to Smokey Bear
The Krebs Article that redwolfe_98 originally posted has the FixIt |
|
Smokey Bearveritas odium paritPremium
join:2008-03-15
Annie's Pub
kudos:4 | reply to chachazz
|
|
 therube
join:2004-11-11
Randallstown, MD | reply to redwolfe_98
Symantec Finds the Hackers Behind Microsoft’s Latest Zero-Day Flaw
Microsoft Won’t Patch Critical IE Flaw on Tuesday
(This coming Tuesday, that is.) |
|
OlegBellsouth FastaccessPremium
join:2003-12-08
Birmingham, AL
kudos:2 | reply to siljaline
said by siljaline:said by Oleg:Microsoft did it again
Did what again or are you just poking fun screwed up again, in security and stability field unlike other software development companies, like Mozilla,Opera in browser industry. Microsoft did not just have one or two stability or security issues. |
|
siljalineI'm lovin' that double widePremium
join:2002-10-12
Montreal, QC
kudos:17 Reviews:
·Bell Sympatico
| reply to Oleg
said by Oleg:Microsoft did it again
Did what again or are you just poking fun |
|
OlegBellsouth FastaccessPremium
join:2003-12-08
Birmingham, AL
kudos:2 | reply to redwolfe_98
Microsoft did it again |
|
