New Critical 0-day Internet Explorer Vulnerability Being Used to Deliver Poison Ivy Trojan
By on September 18th, 2012

If you are still using Internet Explorer 9 or below, here is one more reason to upgrade to Internet Explorer 10, or perhaps take a look at one of the many excellent free alternatives. A critical zero-day vulnerability has been uncovered in Internet Explorer that could allow a remote hacker to execute arbitrary code on your system even if you simply browse to an infected page. The vulnerability is already being actively exploited in the wild. Affected versions include Internet Explorer 6, 7, 8, and 9.

Eric Romang was the first to report the vulnerability, which has since been confirmed by Microsoft. The exploit has four main components: the Exploit.html file which acts as the starting point, the Moh2010.swf flash file that is responsible for spraying the heap with the payload that will be executed, the Protect.html file that is the actual trigger for the vulnerability, and additional malicious components that are downloaded and executed on the compromised system by the payload. The payload being dropped by the flash file has been identified to be the infamous Poison Ivy trojan.

If Internet Explorer 10 is not supported on your system and you don’t want to move to an alternate browser, Microsoft is recommending that you add Internet Explorer to the Enhanced Mitigation Experience Toolkit, or set Internet and Local intranet security zone settings to “High” to block ActiveX Controls and Active Scripting. Detailed workaround instructions are available in Microsoft’s Security Advisory.

Tags: , , ,
Author: Pallab De Google Profile for Pallab De
Pallab De is a blogger from India who has a soft spot for anything techie. He loves trying out new software and spends most of his day breaking and fixing his PC. Pallab loves participating in the social web; he has been active in technology forums since he was a teenager and is an active user of both twitter (@indyan) and facebook .

Pallab De has written and can be contacted at pallab@techie-buzz.com.
 
Copyright 2006-2012 Techie Buzz. All Rights Reserved. Our content may not be reproduced on other websites. Content Delivery by MaxCDN