Broadband Tech > Security > Security > IE Zero-Day

reply to Smokey Bear

Re: IE Zero-Day

reply to therube

I dont get it....Why do large corporations still use IE as their main browser instead of using Firefox or Chrome if IE is that bad?

reply to chachazz

said by chachazz:

---

You might want to take a second look at the diary published this week that is using EMET 3.5 as another tool to help defend your Windows systems against various attacks.

[3] »isc.sans.edu/diary.html?storyid=14797

---

According to MS, EMET will not work with W8.

W8 has EMET (under another name?) built-in. Besides W8 comes with IE10 which isn't vulnerable.

reply to antdude

Then Microsoft is wrong, I have EMET working on Windows 8 just fine.

Why do large corporations still use IE as their main browser instead of using Firefox or Chrome if IE is that bad?

Also, If MS is not rolling out the patch on Tues, then we have two options basically. Use another browser, or upgrade to IE 9 and 10.

I am not upgrading to 9 or 10. They will have security flaws anyway...Im seriously thinking about using FF as my main browser. Im thinking of it very very much.

How about the rest of you? Are u guys willing to move to a different browser after this mess?

Exactly. There is no point of upgrading to IE 9 or 10. Thing is a lot of companies have a crazy policy that does not allow to go with any other browser, but freaking IE.

And do people or users know if they have been attacked from this exploit? What are the signs and symtoms?

Ok, then let me ask this to everyone.
For those of u here who have always have been a fan of IE or has or is still using IE as their main browser, are u considering to use another browser?

The reason I like IE, because I can lock it down using the Group Policy editor. Firefox does not have this kind of "granular" control.
And thats perhaps one of the reasons why System Admins prefer to use IE at most companies.

Until MS rolls out this fix or patch, I will use FF instead....in the meantime.

reply to StuartMW

said by StuartMW:

said by antdude:

It could be one of those out of the bound (OOTB) releases.

I think you mean Out Of Band

Out Of Bounds is usually sports related

A security researcher has found a way to bypass Microsoft's temporary "fix":»www.computerworld.com/s/article/···13-01-07

reply to StuartMW
EMET does indeed work with Windows 8. I have it protecting Firefox on my Windows 8 installation.

Maybe, I don't know.

ASLR and exploit mitigations
Address Space Layout Randomization (ASLR) was introduced in Windows Vista and is essentially a technique to mitigate the infamous “Buffer Overrun” vulnerabilities by randomly moving the location of code and data in memory. In Windows 8 randomization is increased in order to foil known techniques for bypassing ASLR. Other mitigations include changes to the Windows kernel and heap, including new integrity checks and randomization using a similar approach to ASLR. Internet Explorer 10 will also benefit from these changes: besides including an “Enhanced Protected Mode” sandbox, there will be a “ForceASLR” option in IE10 that can randomize all modules loaded into memory by the browser, regardless if those modules did not opt in to use ASLR protection (developers can create modules that take advantage of ASLR protection by using the optional /DYNAMICBASE flag).

EMET provides much more than that.
--
Tom
Boycott AT&T uVerse! | Tom's Android Blog | AOKP (The Android Open Kang Project)

Well regardless XP/Vista/Win7 users would be well served by installing/configuring it. Win8 I'm not sure.
--
Don't feed trolls--it only makes them grow!