Microsoft Releases Workaround For Internet Explorer 0-Day Vulnerability

Internet-Explorer-0-day-VulnerabilityMicrosoft has released a couple of workarounds for the extremely critical Internet Explorer vulnerability we had discussed earlier. The workarounds are available as Fix It solutions, which can be applied directly from the browser.

The vulnerability in question is caused by an error in the Peer Factory class (iepeers.dll) and affects Internet Explorer 6 and 7. The impact of the vulnerability has been magnified by the public availability of the exploit code as well as presence of in-the-wild malwares exploiting this vulnerability.

The first workaround simply disable Peer Factory in the concerned systems while the second one enables DEP (Data Execution Prevention) protection for older versions of Internet Explorer.

The Fix-It solutions make it aptly clear that Microsoft is taking this issue extremely seriously. An update is currently being tested internally and would be pushed out to all affected users as soon as possible. However, in the meantime users stuck with older versions of Internet Explorer should immediately apply the workarounds.

[ Download and Apply Fix-It Solutions ]

One thought on “Microsoft Releases Workaround For Internet Explorer 0-Day Vulnerability”

  1. How can I manually disable PEER FACTORY in IEPEERS.dll? Retina 12428 vulnerability ID. Downloaded from http://support.microsoft.com/kb/981374 and executed ""Disable PEER FACTORY in IEPEERS.dll MS Fix It 50386 for peer factory in iepeers.dll for Internet Explorer 7 on Windows XP; executed successfully; and DEP enable MS FIX IT 50285 executed successfully. Did not aleviate vulnerability.

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>