Zero-Day Exploit Hits Internet Explorer

    September 17, 2012
    Zach Walton
    Comments are off for this post.

It’s kind of cliche these days to make fun of Internet Explorer and its numerous security problems. Microsoft has put a lot of effort into the latest iterations of their Internet browser, and IE10 is by all accounts really secure. Unfortunately, older versions of the browser aren’t so lucky.

Researchers at AlientVault have found a zero day exploit that affects Internet Explorer 7 and 8, and can be easily executed on Windows XP. It’s encouraged that folks using Windows XP, Vista or 7 stop using Internet Explorer right now. A lot of Windows users are safe inside their Chrome or Firefox bunkers, but there’s still quite a few people out there who don’t know any better.

The researchers at Rapid 7 took it a step further and proved that the exploit could be performed on IE 7,8 and 9. That means that Windows XP, Vista and 7 are at risk. They point out that the current zero day exploit affects over 41 percent of Internet users in the United States and 32 percent around the world. This exploit has the potential to wreck a lot of lives. Unfortunately, we don’t really know what it does just yet.

We do, however, know that this exploit most likely comes from the same team who created the zero day exploit in Java from just a few weeks ago. If it’s anything like that, the current exploit hopes to turn your PC into a bot. In essence, they want to take over your PC and use it to advance their own nefarious deeds.

So, what can you do to protect yourself from this potentially damaging zero-day exploit? First and foremost, stop using Internet Explorer. It’s hard to let go of what you’re familiar with, but it’s for the best. Microsoft told Ars Technica that they’re working on a solution, but it could take days for an official fix. Switch over to Firefox, Chrome or Opera for now, and we’ll let you know when it’s safe to switch back. By that point, you may even find yourself liking one of the alternative browsers even more.

[Image Source: Rapid 7]
  • Chinna Botla

    Hello Zach,

    Appreciating you for such a nice article. Same issue happened for Mozilla also but they given a solution to save from zero day exploit users should disable Java in browser. As per my calculation 60% of the people have trusted IE as a safest browser. but its a sad news to all of them.

    Chinna Botla.

  • https://plus.google.com/u/0/112437942968441411412/posts crushkittykitty

    here is the exploit in action
    the bad thing about it is no user interaction just going to a web site

    those not wanting to click links just do a youtube search for “0-Day exploit in action” or “crushkittykitty”

  • http://techwikipedia.com bhanu

    good technology site techwikipedia.com

  • http://www.buyinternetsecuritysoftware.com Internet Security

    Whatever the new technology is, it would be compromised. Its better, human precaution as well as software precaution to be given to our PC. Keylogger exploits, virus, trojans, ad aware, adware are quiet common and have increased on a day-to-day basis, however a better PC security solution, will always be a better solution. If dealing with data, then a periodic back schedule needs to be made, in way that it doesn’t lose data, though the pc crashes.