AURORA Zero day MS internet explorer vulnerability

[eljudo]

Can it be detected by untangle? any input guys?

[brent]

bump

[eljudo]

Can it be detected by untangle? any input guys?

bump, bump

someone please help!

[sky-knight]

And what about this "one" zero day has you worried about it enough that you're asking? Because it's made the news somewhere?

This vulnerability is all but negated if you have data execution prevention enabled on your machine. This feature is enabled by default on any XP/Vista/7/2003/2008 computer.

And no, there is nothing in Untangle to prevent the abuse of a bug in the rendering engine of any web browser.

Don't panic... read.

http://www.sophos.com/blogs/sophoslabs/v/post/8227

Btw...

http://community.websense.com/blogs/...-attack_012109

is wild pack of lies. Websense doesn't offer a single product that completely rewrites the http session. Which would be required to prevent this attack.

[cshaffer]

http://lists.emergingthreats.net/pip...ry/005567.html

That might help mitigate until you get your patches out.

I haven't tested this, but you can write your snort rules for anything. I will reiterate what was said previously that this is one of many 0 days.

http://www.zerodayinitiative.com/advisories/upcoming/

That's just a glimpse of what more you should be worried about

[Danp]

And what about this "one" zero day has you worried about it enough that you're asking? Because it's made the news somewhere?

This vulnerability is all but negated if you have data execution prevention enabled on your machine. This feature is enabled by default on any XP/Vista/7/2003/2008 computer.

Not positive, but I thought I read an article this week that stated that this technique could be used to bypass DEP.