| reply to Dustyn
Re: IE Zero-Day said by Dustyn:Who the hell cares if IE6 is vulnerable?
Microsoft has to stop patching IE6 or people will continue to use it.
»www.ie6countdown.com/
And the newer versions aren't? The more complex things become, the more vulnerable they are. Anyone who's actually worked in coding knows that.
You may like the newer versions, you may like their new functionality, but that doesn't automatically mean they're safer. They have problems and attack vectors IE6 never even dreamed of. Let's not confuse programming reality with marketing. |
|
 Cartel
join:2006-09-13
Chilliwack, BC
kudos:2
 ·TekSavvy DSL
 ·Shaw
·TELUS
| reply to siljaline
I'm surprised it didn't say to disable Internet Explorer along with the Sidebar. |
|
 DustynPremium
join:2003-02-26
Ontario, CAN
kudos:10
1 edit | reply to goalieskates
said by goalieskates:said by Dustyn:Who the hell cares if IE6 is vulnerable?
Microsoft has to stop patching IE6 or people will continue to use it.
»www.ie6countdown.com/
And the newer versions aren't? People using Internet Explorer 9-10 are not impacted... So in this instance, newer is better. However, I'm only referencing this particular vulnerability. For Microsoft to also patch IE6 is a step backwards from their own abandon IE6 campaign.
--
Remember that cool hidden "Graffiti Wall" here on BBR? After the name change I became the "owner", so to speak as it became: Dustyn's Wall »[Serious] RIP
|
|
| said by Dustyn:People using Internet Explorer 9-10 are not impacted... So in this instance, newer is better. However, I'm only referencing this particular vulnerability. For Microsoft to also patch IE6 is a step backwards from their own abandon IE6 campaign.
It is, but the whole campaign is silly anyway. As long as the newer versions of IE are up to snuff, it really doesn't matter what other people choose to run. More to the point, people who run IE6 haven't upgraded their Windows, either - which hurts revenue and is really what that's all about.
We went to the moon without benefit of IE and Windows. If somebody doesn't want to go to a higher version browser and can live with Win98 or WinXP, more power to them. |
|
 StuartMWWho Is John Galt?Premium
join:2000-08-06
Galt's Gulch
kudos:2 | Win 3.1 and IE 3.01 forever!  |
|
 BlackbirdBuilt for SpeedPremium
join:2005-01-14
Fort Wayne, IN
kudos:3
·Frontier Communi..
| reply to goalieskates
said by goalieskates:... If somebody doesn't want to go to a higher version browser and can live with Win98 or WinXP, more power to them. That is the challenge, though... living with them. In the case of Win98, not only can't one find secure browsers that will run under the OS, they can't even find current anti-malware software that will run. Nearly all of what one finds that will run (if they look really hard) is outdated ("vintage") and riddled with bugs or security holes. The only thing in one's favor is that the number of exploits targeting your OS is slowly declining - especially new zero-days. It's the main reason I finally took my Win98FE/KernelEx system off-line a couple of years ago (though I still run it at times as an isolated system for a few pieces of legacy software on it that I occasionally need).
--
“The American Republic will endure until the day Congress discovers that it can bribe the public with the public's money.” A. de Tocqueville |
|
StuartMWWho Is John Galt?Premium
join:2000-08-06
Galt's Gulch
kudos:2 Reviews:
·CenturyLink
1 edit | said by Blackbird:...I finally took my Win98FE/KernelEx system off-line a couple of years ago (though I still run it at times as an isolated system for a few pieces of legacy software on it that I occasionally need). You can probably image it's HD(s) and run it as a Virtual Machine (VM). Then you'd have an anchor for a (small) boat
I have a bunch of VM's, including some of old hardware, and use them from time to time.
The good thing about VM's is that their HD(s) are just (VHD) files. Easily backed up and copied if you want to try/test something without messing up the original. I quite often test things in VM's.
--
Don't feed trolls--it only makes them grow! |
|
 LagzPremium
join:2000-09-03
The Rock
·AT&T DSL Service
2 edits | reply to trparky
said by trparky:Oh shit, I think I know how this exploit may work.
There's an attack technique which is used to overwrite the Structured Exception Handler which would, in any other case, catch the Null Reference Exception and handle it cleanly so that the program would not appear to crash.
But in the case of this exploit, it would overwrite the Structured Exception Handler using either a Stack-based Buffer Overflow or Heap Spray attack. Then, something would be used to trigger (a call to a null Object, in this case) the Exception Handler and since it's been overwritten with arbitrary code, the program would then be vulnerable to attack.
All of which EMET helps guard a program against.
I wonder if flash or IE uses standard exception handlers or do they write their own? My instructor in C# told us to write our own exception handling when possible rather than throw standard exceptions, this might be why. When I was first introduced to exceptions I was like, HELL YEA I don't have to write as much code now. We had been writing our own exception handling up to that point. I wonder if they are just throwing standard exceptions if that's a result from laziness or management hurriedly wanting code pushed out the door?
--
When somebody tells you nothing is impossible, ask him to dribble a football. |
|
|
|
 siljalineI'm lovin' that double widePremium
join:2002-10-12
Montreal, QC
kudos:17 | reply to Cartel
Happy New Year
Define sidebar  Do you mean Gadgets |
|
LagzPremium
join:2000-09-03
The Rock Reviews:
·AT&T DSL Service
| »windows.microsoft.com/en-US/wind···overview
--
When somebody tells you nothing is impossible, ask him to dribble a football. |
|
siljalineI'm lovin' that double widePremium
join:2002-10-12
Montreal, QC
kudos:17 Reviews:
·Bell Sympatico
| Thanks for the link. IIRC, gadgets and sidebar are long gone by way of extenuating issues on both for a good while.
The exploit although there is a FixIt, the exploit is well explained here. |
|
 OlegBellsouth FastaccessPremium
join:2003-12-08
Birmingham, AL
kudos:2 | reply to redwolfe_98
Microsoft did it again  |
|
siljalineI'm lovin' that double widePremium
join:2002-10-12
Montreal, QC
kudos:17 Reviews:
·Bell Sympatico
| said by Oleg:Microsoft did it again
Did what again or are you just poking fun |
|
OlegBellsouth FastaccessPremium
join:2003-12-08
Birmingham, AL
kudos:2 | said by siljaline:said by Oleg:Microsoft did it again
Did what again or are you just poking fun screwed up again, in security and stability field unlike other software development companies, like Mozilla,Opera in browser industry. Microsoft did not just have one or two stability or security issues. |
|
 therube
join:2004-11-11
Randallstown, MD | reply to redwolfe_98
Symantec Finds the Hackers Behind Microsoft’s Latest Zero-Day Flaw
Microsoft Won’t Patch Critical IE Flaw on Tuesday
(This coming Tuesday, that is.) |
|
 Smokey Bearveritas odium paritPremium
join:2008-03-15
Annie's Pub
kudos:4 | reply to chachazz
|
|
siljalineI'm lovin' that double widePremium
join:2002-10-12
Montreal, QC
kudos:17 Reviews:
·Bell Sympatico
| The Krebs Article that redwolfe_98  originally posted has the FixIt |
|
Smokey Bearveritas odium paritPremium
join:2008-03-15
Annie's Pub
kudos:4 | said by siljaline :
Some slight duplication of effort never hurt anybody. Better than no information • voila
|
|
| reply to Smokey Bear
Absolutely essential info. Thank you very much Smokey Bear . Microsoft should be burning the midnight oil over this one.
quote:
After posting our analysis of the current 0day in Internet Explorer which was used in a “watering hole” style attack hosted on the Council for Foreign Relations website, we decided to take a look at the Fix It patch made available by Microsoft to address the vulnerability.
After less than a day of reverse engineering, we found that we were able to bypass the fix and compromise a fully-patched system with a variation of the exploit we developed earlier this week.
We have included details on the bypass to customers of our intelligence feeds and will notify Microsoft of the issue. In practice with coordinated vulnerability disclosure, we intend to update this post with details when Microsoft has addressed the problematic patch.
|
|
siljalineI'm lovin' that double widePremium
join:2002-10-12
Montreal, QC
kudos:17 | reply to Smokey Bear
Researchers Bypass Microsoft Fixit for IE Zero Day |
|
