BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Another (sigh) IE Zero-Day

Posted December 30, 2012    BeyondTrust Research Team

Unfortunately, the security industry was not going to escape 2012 without seeing yet another zero-day vulnerability in Microsoft’s Internet Explorer. It has been discovered that a targeted attack, leveraging a zero-day in IE, has been posed against the Council on Foreign Relations Portal. The technical origin of the flaw is as follows: the vulnerability occurs due to a CButton object being used after it is freed in mshtml!CMarkup::OnLoadStatusDone and has been assigned CVE-2012-4792. The known targeted exploit relies on both Java 1.6 and Adobe Flash (the dynamic duo of client side attack vectors, as of late) to achieve code execution on Windows 7 (as well as those still rocking Win XP, or browsing from their server OS’s) and only affects Internet Explorer 8 and lower. Also of note is that a Metasploit module for this vulnerability has been released.

Fortunately for all of us, Java 1.6 is going to be end-of-lifed in February 2013 with the release of Java SE 6 Update 39.

It is recommended that users of Java 1.6 upgrade to Java 1.7, or alternatively, simply upgrade to IE 9/10 or use Google Chrome.

Update: A Fix it solution has been supplied by Microsoft, which can be used to mitigate the attack vector until a patch is released. It can be found at http://support.microsoft.com/kb/2794220.

BeyondTrust Customers
For those customers relying on Retina CS for enterprise threat management or Retina Network for vulnerability scanning can detect this vulnerability with Audit 17920 – Microsoft Internet Explorer Remote Code Execution (Zero-Day). So run a quick scan before you put the champagne on ice for NYE.

Tags:
, , , , , ,

Leave a Reply

One Response to “Another (sigh) IE Zero-Day”

  1. January 2013 Patch Tuesday: Patches, but none for the IE 0day! | BeyondTrust

    [...] you’ve been following the security news recently, you’ll no doubt have heard of the recently disclosed Internet Explorer zero day, CVE-2012-4792, that made its rounds this last month. Well, you’ll also note that this month does [...]

    January 08, 2013 11:54:04, Reply

Additional articles

PowerBroker for Unix & Linux helps prevent Shellshock

Posted September 25, 2014    Paul Harper

Like many other people who tinker with UNIX and Linux on a regular basis, BASH has always been my shell of choice.  Dating back to the early days moving from Windows to a non-Windows platform, mapping the keys correctly to allow easy navigation and control helped ensure an explosion of use for the shell. Unfortunately,…

Bash “Shellshock” Vulnerability – Retina Updates

Posted September 24, 2014    BeyondTrust Research Team

A major vulnerability was recently discovered within bash which allows arbitrary command execution via specially crafted environment variables. This is possible due to the fact that bash supports the assignment of shell functions to shell variables. When bash parses environment shell functions, it continues parsing even after the closing brace of the function definition. If…

pbps-blog3

7 Reasons Customers Switch to Password Safe for Privileged Password Management

Posted September 24, 2014    Chris Burd

It’s clear that privileged password management tools are essential for keeping mission-critical data, servers and assets safe and secure. However, as I discussed in my previous post, there are several pitfalls to look out for when deploying a privileged password management solution. At this point, you may be wondering how BeyondTrust stacks up. With that,…

Tags:
, , , , ,