Microsoft Internet Explorer Unpatched Vulnerability is Here… Norton Users Never Fear!
Microsoft Internet Explorer Unpatched Vulnerability is Here… Norton Users Never Fear!
You might have heard a few things about a vulnerability in Microsoft Internet Explorer this week. This is otherwise known as a “zero day” because it was found and hasn’t been patched by Microsoft at the time of discovery. You can read more about the actual vulnerability here in the Microsoft Security Advisory for CVE-2008-0015. This bug in Internet Explorer can lead to users having malware installed on your system silently just by visiting any Web site that might be hosting malicious code designed to take advantage of this vulnerability. I have blogged about Drive-by Downloads, infections users get from just visiting any Web site, here and here. Users running Windows XP SP2 or SP3 and Internet Explorer 6 or 7 are susceptible to possible drive-by download attacks exploiting this vulnerability.
Norton users never fear! The good news is that Norton users were proactively protected against this vulnerability with our Browser Protection and Intrusion Prevention capability, regardless of the fact that no fix was available from Microsoft. On Tuesday, July 7th, we released security updates to Norton customers that will protect users against any exploitation of the underlying vulnerability. This is an additional layer of protection on top of the virus protection we already delivered. This is also one of those reasons why Norton users are more protected than with some other competitive products or free solutions that may only provide reactive antivirus protection once exploits are known.
For more information on Web based attacks like Drive-by Downloads, look at our Web Based Attacks Whitepaper.
Message Edited by John_Harrison on 07-09-2009 05:05 PM
© 2023 NortonLifeLock Inc. All rights reserved.
Comments
Hi, John,
Great Blog, to inform Users of the Signatures that were Added who were un-aware of this!
Microsoft Internet Explorer Unpatched Vulnerability is Here… Norton Users Never Fear!
You might have heard a few things about a vulnerability in Microsoft Internet Explorer this week. This is otherwise known as a “zero day” because it was found and hasn’t been patched by Microsoft at the time of discovery. You can read more about the actual vulnerability here in the Microsoft Security Advisory for CVE-2008-0015. This bug in Internet Explorer can lead to users having malware installed on your system silently just by visiting any Web site that might be hosting malicious code designed to take advantage of this vulnerability. I have blogged about Drive-by Downloads, infections users get from just visiting any Web site, here and here. Users running Windows XP SP2 or SP3 and Internet Explorer 6 or 7 are susceptible to possible drive-by download attacks exploiting this vulnerability.
Norton users never fear! The good news is that Norton users were proactively protected against this vulnerability with our Browser Protection and Intrusion Prevention capability, regardless of the fact that no fix was available from Microsoft. On Tuesday, July 7th, we released security updates to Norton customers that will protect users against any exploitation of the underlying vulnerability. This is an additional layer of protection on top of the virus protection we already delivered. This is also one of those reasons why Norton users are more protected than with some other competitive products or free solutions that may only provide reactive antivirus protection once exploits are known.
For more information on Web based attacks like Drive-by Downloads, look at our Web Based Attacks Whitepaper.
Message Edited by John_Harrison on 07-09-2009 05:05 PM