Microsoft Internet Explorer and Edge CVE-2019-1104 Remote Memory Corruption Vulnerability
Risk - High
Date Discovered : July 9, 2019
Description
Microsoft Internet Explorer and Edge are prone to a remote
memory-corruption vulnerability. Attackers can exploit this issue to execute
arbitrary code in the context of the currently logged-in user. Failed attacks
will cause denial of service conditions.
Technologies Affected
Microsoft Edge
Microsoft Internet Explorer 10
Microsoft Internet Explorer 11
Microsoft Internet Explorer 9
Recommendations
Run all software as a nonprivileged user with minimal access
rights.
To reduce the impact of latent vulnerabilities, always run
nonadministrative software as an unprivileged user with minimal access rights.
Deploy network intrusion detection systems to monitor
network traffic for malicious activity.
Deploy NIDS to monitor network traffic for signs of
anomalous or suspicious activity. This includes but is not limited to requests
that include NOP sleds and unexplained incoming and outgoing traffic. This may
indicate exploit attempts or activity that results from successful exploits
Do not follow links provided by unknown or untrusted
sources.
Web users should be cautious about following links to sites
that are provided by unfamiliar or suspicious sources. Filtering HTML from
emails may help remove a possible vector for transmitting malicious links to
users.
Implement multiple redundant layers of security.
Memory-protection schemes (such as nonexecutable stack and
heap configurations and randomly mapped memory segments) will complicate
exploits of memory-corruption vulnerabilities.
Updates are available. Please see the references or vendor
advisory for more information.
References
Credits
Zhong Zhaochen of tophant.com
No comments:
Post a Comment