IE vulnerability

Drone · Dec 14, 2012 at 9:30 AM

This December seems to be an annoying one. Vulnerability in flash made IE and Chrome vulnerable. We had Cumulative Security Update for Internet Explorer but now there's other unpatched vulnerability ... in IE ... gosh not again All these <specially crafted webpages> ...

Spider.io claims to have discovered a flaw that affects IE, versions 6 through 10. The vulnerability reportedly allows the mouse cursor position to be tracked wherever it is on the screen - even if IE is minimized.
Click to expand...

Wow ...

The vulnerability was not addressed in the most recent security update for IE. Spider.io asserts that the flaw is being actively exploited, and claims the Microsoft Security Research Center (MSRC) <has acknowledged the vulnerability>, but has no immediate plan to patch it.
Click to expand...

Lolwut ...

Qualys CTO Wolfgang Kandek expressed concerns over the implications such a vulnerability might have for online banking. Many banks have implemented on-screen virtual keyboards for entering account credentials as a means of avoiding traditional keylogger attacks.

Andrew Storms, director of security operations for nCircle, agrees. “This exploit renders that mitigation null and void - it has the effect of a key logger on virtual keyboards. Attackers could potentially capture the clicks connected with banking credentials using this exploit and that isn't good news for the 63 million Americans that bank online.”
Click to expand...

Whateva ..

Ok people, be safe.

thxbai

Hybrid_theory · Dec 24, 2012 at 2:53 AM

i just find its hilarious that it affects basically all current versions of IE. good job microsoft.

eidairaman1 · Dec 24, 2012 at 3:38 AM

this is just like the same thing with key loggers

Drone · Jan 5, 2013 at 11:03 PM

IE ... poor thing give it a break ...

Hackers find another zero-day hole in Internet Explorer

An elite hacker group credited last year with having an inexhaustible supply of zero-day vulnerabilities was responsible for digging up and first using the newest unpatched bug in IE, a Symantec manager said.

The gang, dubbed "Elderwood" after a source code variable regularly used by the hackers, had been profiled last September by Symantec in a research paper that outlined its strategies as well as its hacking tactics.
Click to expand...

Drone · Jan 16, 2013 at 9:03 AM

Microsoft Fixes IE Zero-Day Bug

Microsoft rolled out an update for Internet Explorer (versions 6, 7, and 8) to close the the zero-day vulnerability which had already been used in several targeted attacks recently.
Click to expand...

Well done.

lyndonguitar · Jan 16, 2013 at 10:11 AM

only the cursor? I'll not be surprised if somehow keys can be logged as well

but has no immediate plan to patch it.
Click to expand...

good job! lol is this fixed yet?

System Name:	home brew
Processor:	Intel Corei7 3770K OC @ 4.5Ghz
Motherboard:	ASUS P8Z77-V
Cooling:	Corsair H100
Memory:	16GB DDR3 1600 GSKILL
Video Card(s):	Powercolor Radeon 7970, MSI Radeon 7970
Hard Disk(s):	Mushkin Chronos Deluxe 240gb. 2 TB Hdd.
Optical Drive:	1 dvd burner
LCD/CRT Model:	3x24inch Dell Ultra IPS
Case:	CM storm trooper
Power Supply:	Antec Quattro OC ed. 1200w
Software:	Windows 7 Business x64
Benchmark Scores:	vantage: P43089

System Name:	Blue Bullet
Processor:	AMD FX 8350@ 5.1GHz
Motherboard:	Asus TUF 990FX Sabertooth R2
Cooling:	Scythe Ashura, 2×BitFenix 230mm Spectre Pro LED (Blue,Green), 2x BitFenix 140mm Spectre Pro LED
Memory:	16 GB Gskill Ripjaws X 2133
Video Card(s):	AMD Radeon 290 Sapphire Vapor-X
Hard Disk(s):	Samsung 840 Pro 256GB, Raptor X 1TB
Optical Drive:	2x Pioneer 2209 BD burners
LCD/CRT Model:	NEC Multisync LCD 1700V (Display Port Adapter)
Case:	AeroCool Xpredator Evil Blue Edition
Sound Card:	Creative Labs Sound Blaster ZxR
Power Supply:	Seasonic 1250 XM2 Series (XP3)
Mouse:	Roccat Kone XTD
Keyboard:	Roccat Ryos MK pro
Software:	Windows 7 Pro 64

System Name:	Xtreme-IV \| Lyndon-ROG
Processor:	Intel Core i7-2600K @ 4.5 GHz \| Intel Core i7 6700HQ
Motherboard:	Asus P8P67-M \| Asus ROG-GL552VX
Cooling:	Corsair H50
Memory:	Memory: G.Skill Sniper 8gb (dual) DDR3 1600 \| 8GB DDR4 2133
Video Card(s):	AMD Sapphire HD 7870 GHz Edition OC 2GB \| NVIDIA GeForce GTX 950M 4GB
Hard Disk(s):	SSD:120GB , HDDs: 500 Gb, 1 TB, 1.5 TB, 2 TB \| HDD: 1TB
Optical Drive:	LG DVD Drive \| Laptop DVD Drive
LCD/CRT Model:	32" HDTV + 2 X 19" Monitor \| 15.6" 1080p
Case:	CM Storm Sniper Mesh Edition
Sound Card:	Onboard
Power Supply:	ST50F-ES 500W Silverstone Strider Essential
Mouse:	Razer Deathadder Chroma \| Logitech G302 \| Mad Catz Cyborg R.A.T. 5
Keyboard:	Corsair Vengeance K70 Cherry MX Red
Software:	Windows 8.1

Log in or Sign up

IE vulnerability

Drone

Hybrid_theory

eidairaman1

Drone

Drone

lyndonguitar I play games

Currently Active Users Viewing This Thread: 1 (0 members and 1 guest)

Log in or Sign up

IE vulnerability

Drone

Hybrid_theory

eidairaman1

Drone

Drone

lyndonguitar I play games

Currently Active Users Viewing This Thread: 1 (0 members and 1 guest)

Useful Searches