Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Issues Workaround For IE 0-Day

Posted by timothy on from the we-call-these-o'houlihan-patches dept.

Orome1 writes "Microsoft has issued a security advisory with advice on how to patch a Internet Explorer zero-day vulnerability recently spotted being exploited in the wild by attackers that might be the same ones that are behind the Nitro attacks. News that there is a previously unknown Internet Explorer vulnerability that is actively being misused in the wild by attackers that are believed to be the same ones that are behind the Nitro attacks has reverberated all over the Internet yesterday."

7 of 101 comments (clear)

  1. MS advice on how to patch a IE zero-day vulnerabil by Anonymous Coward · · Score: 5, Informative

    Click

  2. Workaround is stupid by Anonymous Coward · · Score: 5, Informative

    Disable ActiveX and then demand it runs to "Prompt" in both Internet AND Intranet????? This is NOT a "work-around." A work-around would be how to allow our users to continue running without being prompted to run or not run things they don't understand and don't want to.

    Or install an alternate browser.

    Sheesh, is the Internet really worth this crap? Really?

    1. Re:Workaround is stupid by Robert+Zenz · · Score: 5, Informative

      Fun fact: Forbidding ActiveX and similar things in Internet Explorer yields interesting site effects, f.e. that Visual Studio can't display error messages or the Help anymore.

  3. Link to actual security advisory by Anonymous Coward · · Score: 4, Informative

    http://technet.microsoft.com/en-us/security/advisory/2757760

    Linking from "Microsoft issued an advisory" to submitter's site is kinda lowbrow.

  4. Re:Tired of the IE hate... by Anonymous Coward · · Score: 3, Informative

    The question is why you need to manage a browser so much.

    Define browser behavior for specific vendor (state, federal governments) websites and zones
    Homepage
    What is allowed to be installed
    Favorites
    Preferences for appearance
    Internet and Proxy settings

    the list goes on and on.

  5. Re:Tired of the IE hate... by Anonymous Coward · · Score: 3, Informative

    Google has an enterprise deployable msi installer of chrome, along with a gpo addin to manage chrome. Your statement is false.

  6. Re:Tired of the IE hate... by LordLimecat · · Score: 5, Informative

    Chrome can be deployed by MSI and managed by GPO. They have the ADM templates right on their site.