Researchers bypass Internet Explorer Protected Mode
Just add exploit
Regcast training : Hyper-V 3.0, VM high availability and disaster recovery
Researchers say they have devised a way to carry out stealthy drive-by exploits even when victims are using recent versions of Internet Explorer with a feature known as Protected Mode.
The attack, described in a paper released by Verizon Business, requires the attacker to have an exploit for a vulnerability that's not currently patched. It works only against machines that have the Local Intranet Zone enabled, as is the default for domain-joined workstations.
Protected Mode, which was introduced in version 7 of IE, is intended to prevent exploit code from accessing sensitive parts of the Windows operating system, such as those that create files or change registry settings. But the Verizon Business researchers said they figured out a reliable way to bypass the measure that requires no interaction on the part of the victim.
“The attack combines the facts that sockets are not subject to Mandatory Integrity Control and that sites in the Local Intranet Zone are rendered with Protected Mode disabled,” the paper states.
“The new malicious web page will be rendered in the Local Intranet Zone and the rendering process will now be executing at medium integrity. By exploiting the same vulnerability a second time, arbitrary code execution can now be achieved as the same user at medium integrity. This provides full access to the user’s account and allows malware to be persisted on the client, something which was not possible from low integrity whilst in Protected Mode.”
A PDF of the paper is here. ®
COMMENTS
Linux???
@joe the annoying
Who has 8 to 9 hours to try to setup a operating system that hides everything ?? I installed Ubuntu 10.04 spent 2 days trying to change the screen resolutioon from the fucking useless 1024x768 to something that would render properly on my widescreen laptop, like 1200x800 but it was so well hidden that out came a Win 7 disk and off Ubuntu went to the great blackhole in the sky, and within 1.5 hours I had a fully working easily configurable OS and none of the Bullshit that Ubuntu/Linux puts you thru..
I also have better things to do with my time than to fight a fucking OS for hours to get it going.. So Ubuntu getrs a HUGE fail from me until they make it easier to configure and that will never happen cos the linux fanbois have no life so will happily waste all day to get an os working , me i'll take my missus to the beach
Now I await the Flaming i'll read it when i get back from the beach
@Deadly_NZ: Go To An Expert ??
If something is seriously broken with your car you certainly go to an expert garage and have a Auto-Meister fix it.
The same is with Ubuntu: Find an expert, agree on a price and let him fix your problem. Yeah, it costs money, as all high-quality work of a professional does. On the long run, this is much cheaper than the "Windows Experience".
Something wrong
You say that Firefox is using 200 MB of RAM for two websites? My Firefox has 11 tabs open with a Youtube video playing, and it is only using 140 MB of RAM. 3.6.12.
IT infrastructure monitoring strategies
Agentless Backup is Not a Myth
Top 10 SIEM implementer’s checklist
Steps to Take Before Choosing a Business Continuity Partner
Requirements Checklist for Choosing a Cloud Backup and Recovery Service Provider
