Jump to content

Archived

This topic is now archived and is closed to further replies.

Tx Redneck

New Vulnerability Found in Every Single Version of Internet Explorer

Recommended Posts

http://gizmodo.com/new-vulnerability-found-in-every-single-version-of-inte-1568383903

According to a confirmation by Microsoft late last night, a new zero day vulnerability has been found to affect every version of Internet Explorer. In other wordsover a quarter of the entire browser market.

 

Attacks taking advantage of the vulnerability are largely targeting IE versions 9, 10, and 11 in something called a "use after free" attack. Essentially, the attack corrupts data as soon as memory has been released, most likely after users have been lured to phony websites. Microsoft explains:

 

The vulnerability exists in the way that Internet Explorer accesses an object in memory that has been deleted or has not been properly allocated. The vulnerability may corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user within Internet Explorer. An attacker could host a specially crafted website that is designed to exploit this vulnerability through Internet Explorer and then convince a user to view the website.

Microsoft is currently investigating the issue and will likely release an out-of-cycle security patch to take care of the problem. Let's just hope it comes soon, because according to security firm Fire Eye, this means that about 26 percent of the entire browser market is at risk.

Share this post


Link to post
Share on other sites

Why would you feel bad for someone who chooses to use a 14 year old operating system that they should have walked away from 10 years ago?

Share this post


Link to post
Share on other sites

Why would you feel bad for someone who chooses to use a 14 year old operating system that they should have walked away from 10 years ago?

Mainly because they can't afford to update to a new computer. Times are tuff ... not everyone is willing to learn a new way of computing, either. The 'curve' may be too hard for the elderly to use Linux, or other alternative OS's.

Share this post


Link to post
Share on other sites

Mainly because they can't afford to update to a new computer. Times are tuff ... not everyone is willing to learn a new way of computing, either. The 'curve' may be too hard for the elderly to use Linux, or other alternative OS's.

I don't feel sorry for people who are willing to leave them selves vulnerable with an OS that no longer receives patches and it has been a well known fact for years that support would be ending.

 

There have been "free" alternatives" for decades. If they simply are not willing to learn something new and chose to be vulnerable there is nothing to feel sorry about. They are making a choice. They are not being forced into this situation. They have had many years to prepare. This didn't just happen unannounced overnight.

 

As far as the "curve" goes, well for most of those elderly people goes it comes down to using a web browser and possibly a couple applications. The learning curve is about ten minutes.

Share this post


Link to post
Share on other sites

×