MSIE bug

OCBob

OCBob

VIPER POWERED
Joined
May 19, 2006
Messages
10,488
Reaction score
15
Location
splitting lanes at a buck ten
There is a new exploit for internet explorer and outlook. It is a new 0 day exploit. It allows any kind of malware to be loaded onto your machine without your knowledge, so it is very dangerous. It can come from a website or an email. The best bet is not to use IE, use Mozilla instead, but if you do there is a registry hack that can mitigate this exploit. I have added that info below. If you use Outlook, do not use the preview pane, this can be launched there without you even opening the email. We have seen a very large number of our customers that have been exposed to this already.

This is what we sent to our managed customers:

There is an unpatched "Zero Day" exploit for all current versions of Microsoft Internet Explorer and Outlook, which is being exploited by a wide array of sites on the Internet. Exploitation of this vulnerability can lead to execution of arbitrary code on affected hosts.


VeriSign MSS is currently tracking four versions of the exploit in the wild, and has witnessed the attack on a wide array of our customer base.


We cannot underscore enough the serious impact that exploitation of this vulnerability may have on your network, therefore VeriSign is recommending the following mitigation steps:


1.) Unregister the VML DLL, with either:

regsvr32 -u "%ProgramFiles%\Common Files\Microsoft Shared\VGX\vgx.dll"

regsvr32 /u "%CommonProgramFiles%\Microsoft Shared\VGX\vgx.dll"

This is the most effective way of mitigating the threat.

While you are working to implement this workaround, please also do the following:

2.) Cease use of Microsoft Internet Explorer completely and make use of another browser if at all possible.

3.) Disable the Preview Pane in Microsoft Outlook, as it is possible to exploit this vulnerability using HTML email automatically through the preview pane.


4.) Do not open any email from unknown sources, or any email you are not expecting.

5.) Make sure your Antivirus software is up to date.
 
So what exactly happens to your computer if you get this virus??? Is there a way to tell if you have it???
 
bub180jp said:
So what exactly happens to your computer if you get this virus??? Is there a way to tell if you have it???
Click to expand...
That is the real bad thing here. This will allow a bad guy to install almost any kind of malware onto your machine, this could be a root-kit, a keyboard stroke recorder, etc., almost anything they want. Your AV should be able to detect most of these if it is up to date, but there is no guarantee. We are recommending a complete rebuild for anyone that knows that this exploit has been taken advantage of on their machine.
 
OCBob said:
That is the real bad thing here. This will allow a bad guy to install almost any kind of malware onto your machine, this could be a root-kit, a keyboard stroke recorder, etc., almost anything they want. Your AV should be able to detect most of these if it is up to date, but there is no guarantee. We are recommending a complete rebuild for anyone that knows that this exploit has been taken advantage of on their machine.
Click to expand...

Key Stroke Recorders/ Key Loggers are where they are going to get you. From this they can see what usernames and passwords you use, your credit card info and even what you are typing in emails, letters and the like. This stuff is serious though most people don't think so until there credit cards are maxed and they have no money in their bank accounts. Identity theft is a bitch.
 
OCBob said:
That is the real bad thing here. This will allow a bad guy to install almost any kind of malware onto your machine, this could be a root-kit, a keyboard stroke recorder, etc., almost anything they want. Your AV should be able to detect most of these if it is up to date, but there is no guarantee. We are recommending a complete rebuild for anyone that knows that this exploit has been taken advantage of on their machine.
Click to expand...

Making sure your anti-virus program is up to date is essential to any computer. When you are updating your anti-virus program, make sure you update your Window updates also. Most spyware, viruses and any other crap can sneak though any up to date anti-virus program through back doors in Windows if the security updates are not installed.

To check for Window updates, goto Start ===> go up to Window Updates and follow the directions from there.

To check for spyware, goto Lavasoft Ad-aware http://www.lavasoft.com download Ad-aware Personal. Update it and run it and remove the spyware detected.

and/or

Spyware Blaster is another excellent program. http://www.javacoolsoftware.com

Will
 
Last edited:
Earlier today, Microsoft released a patch for the vml vulnerability. iDefense has also confirmed the patch does work. The KB number for this patch is 925486. Currently it is not posted on the Microsoft KB page, but it is available if you run Windows update.
 
You must log in or register to reply here.

Latest posts

Support Us

Become A Supporting Member Today!

Click Here For Details

Random Media

Plugged cats... New exhaust on the way
IMG 0038
2012 (9)
20140720 102743
Back
Top