A few days ago we published a new one Zero Day of Internet Explorer that appeared. The name of the vulnerability according to the Microsoft, is CVE-2014-1776.
Cybercriminals, according to Microsoft, began "limited targeted attacks", meaning that scammers did not use malicious web links indiscriminately, but chose to focus on a small group of victims.
Many of course were the ones they preferred to use interim measures, to protect themselves, while waiting for the official Microsoft fix.
Οι επιθέσεις στόχευαν τον IE 9, 10 και 11 και χρησιμοποιούσαν ένα archive Flash και μια επέκταση του IE της Μicrosoft που ονομάζεται Vgx.dll που χρησιμοποιείται για vector graphics rendering.
But we have good news.
Microsoft released a security bulletin announcing the immediate availability of the code that closes this security gap. This means you should not wait until the next Tuesday Patch for an update. HM
The company says:
All versions of IE in all versions of Windows contain a security flaw that could allow cybercriminals to implant malicious software on your computer with little or no warning.
Microsoft released a security update that closes this blank so it can no longer be used for attacks on your computer.
We recommend that you download the update as soon as possible if you have not already done so.
Go to Control Panel | Windows Update, if you are not sure where to start.
Of course, here comes the surprise as it appears that the company has provided updates even for Windows XP users.
Affected Software
Operating System | Component | Maximum Security Impact | Aggregate Severity Rating | Updates Replaced |
---|---|---|---|---|
Internet Explorer 6 | ||||
Windows XP Service Pack 3 | Internet Explorer 6 (2964358) |
Remote Code Execution | Critical | none |
Windows XP Professional x64 Edition Service Pack 2 | Internet Explorer 6 (2964358) |
Remote Code Execution | Critical | none |
Windows Server Service Pack 2003 2 | Internet Explorer 6 (2964358) |
Remote Code Execution | Moderate | none |
Windows Server 2003 x64 Edition Service Pack 2 | Internet Explorer 6 (2964358) |
Remote Code Execution | Moderate | none |
Windows Server 2003 with SP2 for Itanium-based Systems | Internet Explorer 6 (2964358) |
Remote Code Execution | Moderate | none |
Internet Explorer 7 | ||||
Windows XP Service Pack 3 | Internet Explorer 7 (2964358) |
Remote Code Execution | Critical | none |
Windows XP Professional x64 Edition Service Pack 2 | Internet Explorer 7 (2964358) |
Remote Code Execution | Critical | none |
Windows Server Service Pack 2003 2 | Internet Explorer 7 (2964358) |
Remote Code Execution | Moderate | none |
Windows Server 2003 x64 Edition Service Pack 2 | Internet Explorer 7 (2964358) |
Remote Code Execution | Moderate | none |
Windows Server 2003 with SP2 for Itanium-based Systems | Internet Explorer 7 (2964358) |
Remote Code Execution | Moderate | none |
Windows Vista Service Pack 2 | Internet Explorer 7 (2964358) |
Remote Code Execution | Critical | none |
Windows Vista x64 Edition Service Pack 2 | Internet Explorer 7 (2964358) |
Remote Code Execution | Critical | none |
Windows Server 2008 for 32-bit Systems Service Pack 2 | Internet Explorer 7 (2964358) |
Remote Code Execution | Moderate | none |
Windows Server 2008 for x64-based Systems Service Pack 2 | Internet Explorer 7 (2964358) |
Remote Code Execution | Moderate | none |
Windows Server 2008 for Itanium-based Systems Service Pack 2 | Internet Explorer 7 (2964358) |
Remote Code Execution | Moderate | none |
Internet Explorer 8 | ||||
Windows XP Service Pack 3 | Internet Explorer 8 (2964358) |
Remote Code Execution | Critical | none |
Windows XP Professional x64 Edition Service Pack 2 | Internet Explorer 8 (2964358) |
Remote Code Execution | Critical | none |
Windows Server Service Pack 2003 2 | Internet Explorer 8 (2964358) |
Remote Code Execution | Moderate | none |
Windows Server 2003 x64 Edition Service Pack 2 | Internet Explorer 8 (2964358) |
Remote Code Execution | Moderate | none |
Windows Vista Service Pack 2 | Internet Explorer 8 (2964358) |
Remote Code Execution | Critical | none |
Windows Vista x64 Edition Service Pack 2 | Internet Explorer 8 (2964358) |
Remote Code Execution | Critical | none |
Windows Server 2008 for 32-bit Systems Service Pack 2 | Internet Explorer 8 (2964358) |
Remote Code Execution | Moderate | none |
Windows Server 2008 for x64-based Systems Service Pack 2 | Internet Explorer 8 (2964358) |
Remote Code Execution | Moderate | none |
Windows 7 for 32-bit Systems Service Pack 1 | Internet Explorer 8 (2964358) |
Remote Code Execution | Critical | none |
Windows 7 for x64-based Systems Service Pack 1 | Internet Explorer 8 (2964358) |
Remote Code Execution | Critical | none |
Windows Server 2008 R2 for x64-based Systems Service Pack 1 | Internet Explorer 8 (2964358) |
Remote Code Execution | Moderate | none |
Windows Server 2008 R2 for Itanium-based Systems Service Pack 1 | Internet Explorer 8 (2964358) |
Remote Code Execution | Moderate | none |
Internet Explorer 9 | ||||
Windows Vista Service Pack 2 | Internet Explorer 9 (2964358) |
Remote Code Execution | Critical | none |
Windows Vista x64 Edition Service Pack 2 | Internet Explorer 9 (2964358) |
Remote Code Execution | Critical | none |
Windows Server 2008 for 32-bit Systems Service Pack 2 | Internet Explorer 9 (2964358) |
Remote Code Execution | Moderate | none |
Windows Server 2008 for x64-based Systems Service Pack 2 | Internet Explorer 9 (2964358) |
Remote Code Execution | Moderate | none |
Windows 7 for 32-bit Systems Service Pack 1 | Internet Explorer 9 (2964358) |
Remote Code Execution | Critical | none |
Windows 7 for x64-based Systems Service Pack 1 | Internet Explorer 9 (2964358) |
Remote Code Execution | Critical | none |
Windows Server 2008 R2 for x64-based Systems Service Pack 1 | Internet Explorer 9 (2964358) |
Remote Code Execution | Moderate | none |
Internet Explorer 10 | ||||
Windows 7 for 32-bit Systems Service Pack 1 | Internet Explorer 10 (2964358) |
Remote Code Execution | Critical | none |
Windows 7 for x64-based Systems Service Pack 1 | Internet Explorer 10 (2964358) |
Remote Code Execution | Critical | none |
Windows Server 2008 R2 for x64-based Systems Service Pack 1 | Internet Explorer 10 (2964358) |
Remote Code Execution | Moderate | none |
Windows 8 for 32-bit Systems | Internet Explorer 10 (2964358) |
Remote Code Execution | Critical | none |
Windows 8 for x64-based Systems | Internet Explorer 10 (2964358) |
Remote Code Execution | Critical | none |
Windows Server 2012 | Internet Explorer 10 (2964358) |
Remote Code Execution | Moderate | none |
RT Windows | Internet Explorer 10[1] (2964358) |
Remote Code Execution | Critical | none |
Internet Explorer 11 | ||||
Windows 7 for 32-bit Systems Service Pack 1 | Internet Explorer 11 [2] (2964358) |
Remote Code Execution | Critical | none |
Windows 7 for 32-bit Systems Service Pack 1 | Internet Explorer 11 (2964444) |
Remote Code Execution | Critical | none |
Windows 7 for x64-based Systems Service Pack 1 | Internet Explorer 11 [2] (2964358) |
Remote Code Execution | Critical | none |
Windows 7 for x64-based Systems Service Pack 1 | Internet Explorer 11 (2964444) |
Remote Code Execution | Critical | none |
Windows Server 2008 R2 for x64-based Systems Service Pack 1 | Internet Explorer 11 [2] (2964358) |
Remote Code Execution | Moderate | none |
Windows Server 2008 R2 for x64-based Systems Service Pack 1 | Internet Explorer 11 (2964444) |
Remote Code Execution | Moderate | none |
Windows 8.1 for 32-bit Systems | Internet Explorer 11 [3] (2964358) |
Remote Code Execution | Critical | none |
Windows 8.1 for 32-bit Systems | Internet Explorer 11 (2964444) |
Remote Code Execution | Critical | none |
Windows 8.1 for x64-based Systems | Internet Explorer 11 [3] (2964358) |
Remote Code Execution | Critical | none |
Windows 8.1 for x64-based Systems | Internet Explorer 11 (2964444) |
Remote Code Execution | Critical | none |
Windows Server 2012 R2 | Internet Explorer 11 [3] (2964358) |
Remote Code Execution | Moderate | none |
Windows Server 2012 R2 | Internet Explorer 11 (2964444) |
Remote Code Execution | Moderate | none |
Windows RT 8.1 | Internet Explorer 11[1] [3] (2964358) |
Remote Code Execution | Critical | none |
Windows RT 8.1 | Internet Explorer 11[1] (2964444) |
Remote Code Execution | Critical | none |
[1]This update is available via Windows Update.
[2]This update is for systems that have the 2961851 update installed. See the Update FAQ for more information.
[3]This update is for systems that have the 2919355 update installed. See the Update FAQ for more information.
Non-Applicable Software
Operating System | Component |
---|---|
Server Core installation | |
Windows Server 2008 for 32-bit Systems Service pack 2 (Server Core installation) | Not applicable |
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core Installation) | Not applicable |
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core Installation) | Not applicable |
Windows Server 2012 (Server Core Installation) | Not applicable |
Windows Server 2012 R2 (Server Core Installation) | Not applicable |