Microsoft has announced a new zero-day vulnerability that affects all versions of Internet Explorer (IE) 6,7,8,9,10 and 11. As 26% of all computers use IE for web browsing, this is a serious issue. The vulnerability, being tracked as CVE-2014-1776, exists in the way that IE accesses an object in memory that has been deleted or has not been properly allocated.
A hacker could host a website designed to exploit this vulnerability, to lure users using IE. Once the user has accessed the website, the hacker is able to gain the same user rights as the current user. This gives the hacker complete control of the victim’s computer and the hacker can remotely execute code, install malware; view, change or delete data.
Network Box Security Response, in partnership with Microsoft’s Active Protection Program (MAPP), acted in real-time and PUSHed out NBIDPS (IDS & IPS) signatures to all Network Box systems running NBIDPS. These signatures detect exploits of the zero-day vulnerability and provide protection at the gateway. NBIDPS is designed to protect networks against known exploit vectors.