Which SSL Reviews

SSL Certificates

Microsoft Internet Explorer Patched, Zero Day Attack Averted

September 18, 2013 | By  

A critical bug in Microsoft’s Internet Explorer has been exploited by hackers and the security experts opine that these issues can easily lead the browser to zero day attacks. The software developer was quick to respond and released a patch fix for their default browser which will not only fix the identified bugs but also support better SSL Certificate incorporation for every website. Instead of releasing a full fledged patch, Microsoft chose to go for a Fixit tool that will temporarily bring the issue under hold. Even though, this doesn’t directly affect servers in websites are hosted, chances are high that users relying on the browser will get affected. It is a remote code execution which in common terms means the hacker can remotely execute the said injection so as to make easy way for his intrusion into a third party computer or network.

Targeting IE8 and IE9

Speaking to the press, a representative of Microsoft revealed that this vulnerability is identified but has targeted attacks only at minimal level. Before it becomes a global concern, it will be fixed soon. The issue is said to affect IE6 which was released nearly twelve years ago and will continue to be a threat even when the new Windows 8.1 releases in October this year with IE11. It is targeting a common code found in all internet explorer browsers and the company accepts that this is indeed threatening to their entire infrastructure. Such zero day threats could even target ssl certificate secured pages and may lead to data theft which later hackers will try to decrypt to read the information bundled within.

Just a week ago on Patch Tuesday, Microsoft released an update for internet explorer but with the new issue in hand, the fixit tool is their answer for the moment. It helps stop the critical issue and also allow ssl certificates to continue their encryption procedure without disturbances. The company also suggested users to go for Enhanced Security Configuration mode on IE to browse websites because it has the capability to prevent zero day attacks. The browser runs in the mode by default on Windows server 2008, R2, Server 2012 and Server 2012 R2 versions.

Besides, the supported mail systems including Outlook, Outlook Express and Windows Mail uses this mode in internet explorer for assured security. The web based threat can easily attack common users because they are unaware of technical issues and solely rely on tools such as antivirus, firewall or SSL Certificate to protect them.

Be part of an IT community with thousands of subscribers. Get the latest news, blogs, and thought leadership articles. Subscribe now
Email *

Posted in SSL Certificates

Be Sociable, Share!

Leave a Comment


 


* fields are mandatory