Network Security & Hardware - eWeek


Battery 500 Project Charged Up over All-Electric Cars
Charting the Final Frontier--Google Maps for Indoors
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


Microsoft to Patch IE Zero-Day Vulnerability



 By: Brian Prince
2008-12-16
Article Rating:starstarstarstarstar / 1


There are 0 user comments on this Network Security & Hardware story.


Rate This Article:
Poor Best
Microsoft is prepping a security patch for a zero-day vulnerability in the Microsoft Internet Explorer Web browser. The out-of-band patch is slated to be ready Dec. 17 and will fix a data binding problem being attacked by hackers.

Microsoft will release a patch tomorrow, Dec. 17, for a zero-day vulnerability affecting Internet Explorer that has been under attack by hackers.

The vulnerability, which affects all supported versions of IE, lies in the browser's data binding function. According to Microsoft, when data binding is enabledwhich it is by defaultit is possible under certain conditions for an object to be released without updating the array length. This makes it possible to access the deleted object's memory space and cause the browser to exit unexpectedly in a state that is exploitable.

Resource Library:

"At this time, we are aware only of attacks that attempt to use this vulnerability against Windows Internet Explorer 7," Christopher Budd, Microsoft's Security Response Communications lead, said in a statement. "Microsoft encourages customers to test and deploy this update as soon as possible."

In the meantime, Microsoft has made information available about a number of workarounds and mitigations for IE users.

Reports of attacks targeting the vulnerability began to surface the week of Dec. 8. In the latest twist, hackers have begun using legitimate Web sites to target the IE flaw. Over the weekend, Microsoft reported a significant increase in the number of users affected by the attack, and researchers at Trend Micro reported that as many as 6,000 Web sites had been infected.

"Looking at the fact that Microsoft shipped an out-of-bound patch for MS 08-067, and the fact that malware targeting MS 08-067 did not nearly infect the amount of machines that the new IE 0-day has, Microsoft's decision to ship an emergency update patch is to be applauded," Roel Schouwenberg, senior anti-virus researcher at Kaspersky Lab, said in a statement. "It also shows that the wormability of a vulnerability is no longer a good indicator of the seriousness of a threat and that these Web-based threats are now much more dangerous than network worms, as I stated during the initial outbreak of the MS 08-067 malware."





  Reader Comments: Microsoft to Patch IE Zero-Day Vulnerability
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Network Security & Hardware Articles          >>> More By Brian Prince
 


x}v6sMQ>mG&ޣCĘ"9$e[K?K3n~郒lwǙm'mKX@ Bw?Hp4ô1f%STI}"I{hC(~0`R)_rdxBԲ|WR #Yخtj5w5Gl$J{'AT{j xL9uΜ}ٜjc7h2 Xm (kN0-Z P8"X.{D~, DuXqLGH*C'x8ռi/DaOGTHM"h4"J>vn=w2`~|!`T黖6?"CAUVekVClvy!rs#gKͻH͠匝8Gd`jI:@"4ԘC2R!p5`p*)ZHtGL: fK>P:x =3~bA2xFaIH'l6XB?x'C]tQV_սkYoAסߍ=gfGdYo&A.wQMv TmO |l ͟P>AuӱCģzr$˚7hewynJ| bT9,╇i΃oĩq3}۷?һ(TU-/{W ? n04h;\CryMS! eUS ^_wD_"0QYTi|/ Z@ WP uN.kzQҏZ-[KEKXOr ])2,R8Df9O-Ҿoo:6OOn:3do̲5<jUU* j vb!?ޛ:W۳5mս푳 i?uN=d#t:+?fV'_Z-կz O|iuHZz>540V+JJ=2iuLxE$Y-r"8_^Cf&j ͒UB_;XȏKG)H7#ǚ Mmdʩ$|ǺzNlY*E`K70ShI3;nZK}0[=RF&\ ДaCǘذ 1"%ߨҁ6)`I˪ TY&嗋mQu3 . If({΀/3A.r)i  6=aL+^*뻹(-.k\'֛esJVt];7Eя0-px=n7]wz]t0*>cq4Y`A-. :mo:al:7Rq ^,*_WL F̶-a[e)u5}|?  aM6ulZjx>:ACA4icŦh4@'&h`C:}ҍ:L wF|hx: C 00w9LP#iwC۠h&r<kImLJ.??6 { G`p&{xk =`D+wKPbLTE}vAC@X' 6)@}9\Plm^3-mhZ`1 5f:%ѥ6N\IQo -2(%łdhs 4.gP)AH =k 99 ŊH~ޑvR.%rP.o=!ԑtጝR.?Kh3aGe-n^ $ d6g2+IMiG]W-&D7r"e.G 7Kᙖ6ZlZe y-0޹5mVAL  |U=kb$`~f NȃX`ih[_<<fq'Ea e-6BUjbg`m1Jx=e\48L XbOF.#NWɅcًͧ Ңw^^SvԿ~1Gl2ݴۄ歰C`V9QNg43aJ |Ӛ#Os'])=ٰR.%Q?؉ 7ܕVR53]֩34-Rzz|pE% WlB%)` N '|h:|#H& ,#Ez .2 ZCK`АB(r\QT1.#_ ZE`P$ܔwт.;|X]/XL+*9Gpϟ  sFWyYFf?K~ԪbVm&ZQrTUh*(Si| |s`ޝo>0zxp8 `3|xkmK-+ c.Z$ c?`׊_RwU)ұ)N<:`r*-?MΝ.#Џ]MtAk?, ܠYCaϖCV*Y~b9'؁-_k9 E`9^QӲkSJ*H@8܎:y>-MH+u0-tp])TkE}fVWc{)h"QkF&FdHt=Έ#6RP[j*k};`[Ekfh+,s Jb+ʹV(EcݛUzz}lFYdy3isS2ܪ+_O澩ÇS<MxK ͳi(54=_@HpfGi*>W3)AD)& /jh_tU-'Pm2hSYpg=HٚIyu}l,On?aƚAFp52A\D wl>s3ѹtNsl E?9dN u3U sf> W|+6,~xVf6)E|\D"sLnapzGdD"9ks-!?_l6a9L6[rR)Y {259p\Semi{}OA-a51r&]ߘ4|l'2Q&Ob 8ZKjp9ւ u^PS*zWқMO`@n棨|tǞfPHrX#7:i=$>JS-b tqi#ZMFbZ*BBgQ!WVQ]AӀM\rkhs%p}/O&PFͧzM*Eq4I#̸yF0.Ɨ!skgO̦:Zk.&t]41Tmfa2N4D*knIGa GF*͐;YQa'\$X+JJYt>80xX N zW8pL\'eM=J6z=  qΟݚr`>xIΝ JIUKUjZ'04 p ( JQ)ݣ,z$_d0JP-Vn8N3Az 2vBs9c#|V ni*<6wOXOdK!OWƒ"'!Z+73,qvëVqm^?2Z cC7׏j81@ EE@j߱?$ ?/l8)F::~ݕDw{vZ#RT>Y/5/;?k:N00vy?J0޿ LЇ_U#R>&*MUK\6?p-z_U>6 `i8~{L(}׆7{%%u\}n; EFh0Z < hI^ 8͛+%E;&u ߽< rLpAj^t>\'d0| sznބ6b ` xѤȢ8"̔cxH/ B@ ˸toZ,SVXMr!}%=C٠khM؆{+^+[ 5̀o $`P8ǀzB*/i%$C[( `E/)(+RJ)"4FYO |ZM3_f| Rt4Du~il_4}+ y*}y:}4~hOWK0NvfAda+F+9ǭZO{q@HE ?_9/g`T1IB^2 7?%E馺7Gdb#N M5W"Jv-{t#1a 1GTI;ɨu͒:h<5 :)!Oϓp|Nk'I^VR6T$UT%!T4QLNbC]F+Cg һn^mOpVHp._xvImK$ TgKe  KqkP i"+ `->ϓgԢᬖ^}y;I9zSajJf Sr/uO*UmOwXcyr?{'q?K8t2Ti '3Xsw{ѺB ?݁M5=ICw5FO9. A/gh9[Qb'x"64NdyWy#+xEıTrkc䰎ʦ jptەgabxYa)~h8SʹiuUO i^}&'m_ |1$?[н>u?y{lo&<)sǣAlk59ob`Jwfim =hKx?Koҽ{g;ᧅ}Est3VTsb{I6ӱ$BEͫ*ۻʾ\EVd.tՓ Tx|11@7YM (fެyi1>Q3-|c1o~<Ϥ ]ek*)w}o}VZtC.qD)&d/.%o.E ju OKt1ڮ/=اHkYXxlQWgo ?u'|ȞF8^j[Dɼci2> AC؞qbLp#Pfp~n ֔I i#ĠHߛsEs _5DN XW+Oiƿ_B•/&[qVL>9b!y:Sq_F@hgFWTnr O پ͈D; u6 /kST=z7 dEG.1ϵ㔵9\ڸ+ph~Ɠ 0Ci ]- ̭C}rmi U7^$R5w0՝?Ky]bbZv ^™¤йm\W&rSϪb`( [AɄb;)mR5,yD>dId+s$ŕBCym"[Pos$0pd)R鰔8>=Q\m v/O&"1#srnwL13G#9Ώ#/k b5^N[URrn8W8ӣRC}(h/it:*JElRq=25",frH0 ^| n3ʍ*ҋk׭fJd[i`}! ]W|8|c  .2$ Bj '(@u[-8󞳷|:SXItl&aeZ%Orҙ=dLb&UoD L4-cV^1{gf j;*}vfRwHH &L;ԅeCr @ݜIħR%<'L^ms/oo "%R:J?jXVXG`I8Ld5T' k]J%#q{ 4vgWF+I:Fc93+Gg{k|(OxC>͝͝͝͝N/n|yz[͗.RǠTQ+JeaxwQTsrN c_}Utg5"ϷgŹ2S^/GI)H=]\_]ftH.9Xf"*r_̥ڎ& !R' eNMe̗'upQ{_Xt_jZPd%MԕN(,/ Ƽ,(W-kX"]rkvI2L'hh[&'D@2/{}_%^zD ^I yt vڠ{ 4^,YT2e[Ջy>R#=cQY J wql!W2OC75k1ldo9/"gY֜dnĴt[͡3 2M D XmAa ^n{rFK-9AQ87_.YL"go0<|nbcJg%=g<6,rժru}UO;nӿqQ-wziPLZ~D/NCDV?\=B{[\>5ȃ$ ZkGFP L-Vվ.ƙ']\1 ?|SWc.fވl4klQ)>V%F itMע@ق7o HCpunHN7v}k;"Z:^g9PP pk$|-F~a:_y7 Ɔ _ㅍbFkg/'3M5v/=De{\g1c9|e.,~ԶǸa cNkz6`&%$&jWw831ll֑f" aggkm}ˬē.z9tZŮ(AGsl= }Ř'"?[@ůpTTS],5p4o^ߚ1wHȀIצb=%5sh~wXlצD2]^Iɽ=/ P|F0-c )xQzi ȪVF:t)۬R P3WWbp,G˼ٌv;тz( ƗY' [IHcc;Wpj8e[YӰ@YI ,çx$%]Z1;>BSeνco Pa5?}r闺U0ģ9YӲ뿓$yk1%1Y~Gj w.P5Yj>fF!̈T:==݃vOeS䌠`Gw~xP8Pk}-6Ӫ=D~0Ǘq~ӧ!i3ّ/aGN$('vYm0="م'p0B GqUc\Z8$ ziwC4X_i㽻n%5Dh#NgvxގH[5A\N{3EJMh>#Ծ7=F'b^m9_ +Kf0YlfmmYQ ֶBۅ]aiJ"%N'099l6a 0ꦆ/HW"Y0lF+rC5,?`KDVObD+ )m3Fw1.>OeB~c |)/O L5& J!47\CP |h*C7q+XyTkljod@2Oc˿IvqY@y+LL͂`Aa~L­!Rjs# h_ :1+`B[EP009|>?M0]:Afp͒w\j:rtT b8+M 5?3,ȏ]0Klݜ(8Zi$P!%h$bcx=9aqmdtnz<w'H_PbޅR-'I]+A !2,=Vr{kwy |BfE#{8~BOz%rEeW0`A='92bg44\K= bISkwsgrֽ!MrvnǓM^EO3a[+|SwNϧgMϲLGƿd&R0mw 5Ušj\ «.Y.284dG_0}4e 4{$; UjUoDLO!~պizj6Z[AyY/N|v˒%uԢz h7x^:X)` zIc p!>E/ڧ}ҽjIJ/6//23_2of}i8QޅnF9rz}y hjgB3Y}>@?dG(kw֗wZFQd3r'?r{埡 oUK2K{AKe}. /?/32?QF22ϡe )~P~U{mF$)cf5qv%sQ^5N2\}~)PWgP*(Xi7Zeu+\W~ y>{'sg+i\WKI0ntEճKT3cn5:@ba/! c|U$X2M*a#(78%Y}MJ 4tk 7b[y@Yp&}:=WVvl+Jy._[nNJ>s\ȜHdc3,FDk$}oND1KAF0_wͣ,C ;H_xĻOݞ܃辊r m>v#y\^xfOvHy1n~hlZ/O6 8uߜ:Sw߽,RK|c ,>a4 D -B9}54]MWnƜ{c21Nrl(UJZR[TJ= æDD/>QTY)ȅ[V R`" *s>P`26UJ` Pz!J1 4c֭dK1;BDO"׏ ѱF]WeL,d 'ݢȗጽNۯXJ ā`f@2b/`{8z=(ūN?0}Y$6VI2hؐM ؒ9N-=)N>@O'Ùu5G)f'q%B4{Po.@c d߻G!LSx uYಓH_`'cEx&bb P|_|aڳGvI6{Nzs̄0Qx ]| [l,)1{;Kh.ZԿsg:C{)B9O X3Wd]d A_d|bOh6MxXUm&$tp;y;6M(ï9ao5RFXk;MA5c>;ql>9ksoL"~p%v jcTF\gȌa)xft(,uY{N6 )4Mϫ΢R$[w0W*aʹD.v;ӚVA{%>D. $Cb9G8]! MAE~!O' ϻH(tI`S &)1|j7ëm]@_vܥiLUhHl;:d2- & |wخ;Oq^'dd9e7gy1cHPWFWݞ햏 Xo} 8lO.dzl}π!XsCQ%ɷ` =͛5}^nT "+1<&WEߟ2"L- ΢?MSg(\*],1Ał?vLwVpw"Q*Ԯ^g͜ ŧSW<2JP'jdV@8̝ -ӟ~H׶I _[0~OX+ʕbwgʥ.Sܟ=Ba҃fHEk,^zXٻf7npSGghwq#b uu+e!.0:.XU\M)S_7lRTFE®":q`x];<k{.**kWȁnTx囤9-AU  =[=܋;ɾ ^f+1ͱWul g)C2^#s!oYX&7ęV /O CׅѰ0 L{,lyEG%RrNCa 0F c:p2 19.O)xI1%h3l䣈mAb?kڱL}aG?q,IaE´Bd'KWܱ0_^5FElT$bB=Ay,O~ւ!gn耵]1fnBY!ˣŬ"D0Ȯ'Z:tsh{h۟Z3TJX6c?tf W@ý]Ac*a?<#/ah(`yjSSQ2$Y":xqea#Vt*Nzf?PuYsTO34[;?;o:ˌhT*.㉋o۝ŧ݋M ғnZRXBYS$DM $RzVs!Y/ ~c Wha<y&F{5Vj"<&o(FҢΰ \岞JV01{l~r[)CEs̥D/4^JB\qrh6