Linked by Thom Holwerda on Mon 18th Jan 2010 22:00 UTC
Internet Explorer Ah, the security vulnerability that was used in the Google attack. It's been around the internet about a million times now, and even governments have started advising people to move away from Internet Explorer. As is usually the case, however, the internet has really blown the vulnerability out of proportion. I'll get right to it: if your machine and/or network has been compromised via this vulnerability, then you most likely had it coming. No sympathy for you.
Thread beginning with comment 404811
To read all comments associated with this story, please click here.
Is this accurate?
by smitty on Tue 19th Jan 2010 01:38 UTC
smitty
Member since:
2005-10-13

It was my understanding that the IE6/XP only nature of the bug was only limited to the publicly posted zero-day exploit that is out now, and that newer versions of both IE and the OS could still be compromised by using a still-secret method that the Google attackers took advantage of. Are you sure that isn't the case?

Although to be fair, most of the noise out there now is because of the publicly available exploit, and if it was just the Chinese who had access to the exploit a lot of that might quiet down.

Reply Score: 2

RE: Is this accurate?
by kragil on Tue 19th Jan 2010 01:58 in reply to "Is this accurate?"
kragil Member since:
2006-01-04

No, it isn't.

The Aurora exploit now works with IE7 on XP and Vista. IE8 on XP SP2 and Vista SP0 does not use DEP and so it is just a matter of time or effort until IE8 gets cracked.

And even with DEP you aren't secure until a real fix is released.

Edited 2010-01-19 02:02 UTC

Reply Parent Score: 1

RE[2]: Is this accurate?
by nt_jerkface on Tue 19th Jan 2010 02:53 in reply to "RE: Is this accurate?"
nt_jerkface Member since:
2009-08-26

I'm guessing you're talking about this:
http://blogs.pcmag.com/securitywatch/2010/01/aurora_exploit_ported_...

Even if he has developed an exploit that doesn't mean the machine can be taken over. From the same article:
Note that IE7 still has protected mode implemented by default, so even if an attacker can get the exploit to execute, there's not a lot he can do, because he's running in the crippled user context of protected mode.

Reply Parent Score: 2

RE[2]: Is this accurate?
by Bounty on Tue 19th Jan 2010 16:32 in reply to "RE: Is this accurate?"
Bounty Member since:
2006-09-18

No, it isn't. The Aurora exploit now works with IE7 on XP and Vista. IE8 on XP SP2 and Vista SP0 does not use DEP and so it is just a matter of time or effort until IE8 gets cracked. And even with DEP you aren't secure until a real fix is released.



Ok, I've had enough of this, I can't sit by and just read the dumb comments anymore. Seriously, Vista SP0? Why are we even talking about people who intentionally sabatoge their computers? SP0? FFS? Let me sumarize the part of the article that discusses SP0.

People who disable updates deserve to have computers that r belong to someone else! Is it Microsoft's fault the driver didn't buckle their seat belt? RTFM

Reply Parent Score: 2