Zero-Day
Leave a Comment

Zero Day Flaw Revealed – CVE-2014-1776

A new zero-day vulnerability, which affects all versions of Internet Explorer (IE) 6,7,8,9,10 and 11 has been announced by Microsoft and is being tracked as CVE-2014-1776.

As 26% of all computers use IE for web browsing, this is very much a serious issue. The vulnerability exists in the way that IE accesses an object in memory which has been deleted or has not been properly allocated.

A hacker could host a website designed to exploit this vulnerability, to lure users using IE. Once the user has accessed the website, the hacker is able to gain the same user rights as the current user, giving him complete control of the victim’s computer and the ability to remotely execute code, install malware; view, change or delete data.

Network Box Security Response, in partnership with Microsoft’s Active Protection Program (MAPP), was quick to react and PUSHed out NBIDPS (IDS & IPS) signatures, in real-time, to all Network Box systems running NBIDPS. Already released, these signatures detect exploits of CVE-2014-1776 and provide protection at the gateway, thus ensuring that all customers using the NBIDPS system will be safeguarded against known exploit vectors.

In addition, we are continuing to work with our anti-virus labs to provide HTTP anti-virus protection signatures or known exploits wherever possible.

Should you have any questions, please do not hesitate to contact us at 888-315-8886.

The Network Box Security Response Team

This entry was posted in: Zero-Day

by

Our mission is to produce, configure and maintain effective, affordable, computer security systems to protect the computer systems of enterprises of all sizes. We believe that all companies, regardless of size, should be afforded the same level of protection.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s