New Zero-Day at Internet Explorer. Be aware that Microsoft has stopped supporting its older operating system Windows XP. Αυτό σημαίνει ότι η εταιρεία δεν διαθέτει πλέον patches to fix security gaps for the specific operating system.
Microsoft has recently confirmed that a new vulnerability (zero-day) in Internet Explorer could be used to compromise systems that run the company's browser.
According to the company the browsers affected are the Internet Explorer 6, Internet Explorer 7, 8, 9, 10, and 11.
You can see the Microsoft warning from here.
The exploit exploits an unknown use-after-free vulnerability, and uses a well-known technique Flash exploitation to achieve arbitrary access to memory to bypass Windows ASLR and DEP protections.
Δυστυχώς, τα Windows XP είναι μια από τις πληγείσες πλατφόρμες, και το λειτουργικό σύστημα, δεν λαμβάνει πλέον υποστήριξη από τη Microsoft. Θα πρέπει να αναφέρουμε ότι οι χρήστες που επηρεάζονται από την τελευταία ευπάθεια του IE, είναι αρκετοί καθώς τα Windows XP, εξακολουθούν να είναι εγκατεστημένα στο 28% των υπολογιστών desktop with worldwide.
Microsoft had warned that this could happen, and suggested to anyone using the ancient operating system to upgrade to a newer version.
Security experts they claim that disabling Vgx.dll, which according to Microsoft is responsible for the performance of code on VML (Vector Markup Language) web pages, could be the easiest way to protect a system that uses Wwindows XP. Another easiest way is to leave Internet Explorer and use another browser that is still updating.
If you want to delete the DLL, open a command window orders with administrator privileges and run the following command:
regsvr32 -u "% CommonProgramFiles% \ Microsoft Shared \ VGX \ vgx.dll"
