Wednesday, December 10

0-Day IE Vulnerability

Another example of a 0-day vulnerability has been described by SANS. This one on a fully-patched version of IE7 which according to recent browser stats 47% of you are using.

As I've written about before, there appears to be more evidence pointing to the ineffectiveness of our existing controls - AV in dealing with these threats.

The most worrying thing about the trend of 0-day exploits is how many unpatched exploits exist which haven't yet been reported? Based on the ability for researchers to turn these into profits I would bet that there are an equal number.
Post a Comment