{"id":1488,"date":"2015-08-25T04:14:32","date_gmt":"2015-08-24T20:14:32","guid":{"rendered":"http:\/\/staging.bankvaultonline.com\/?p=1488"},"modified":"2015-08-25T04:14:32","modified_gmt":"2015-08-24T20:14:32","slug":"new-ie-drive-by-download-flaw","status":"publish","type":"post","link":"https:\/\/www.bankvault.com\/new-ie-drive-by-download-flaw\/","title":{"rendered":"Alert: New Zero-Day Internet Explorer &#8216;Drive By Download&#8217; Flaw"},"content":{"rendered":"<p>Microsoft has issued a patch for a serious security flaw in Internet Explorer which is being actively exploited by hackers. The zero-day flaw &#8212; known as CVE\u20132015\u20132502 &#8212; allows hackers carry out what are known as &#8220;drive-by download&#8221; attacks where the victim&#8217;s system gets infected without their knowledge, simply by visiting a malicious website.<\/p>\n<p><strong>The flaw affects all versions of Internet Explorer between IE7 and IE11<\/strong> &#8211; although it doesn&#8217;t affect the company&#8217;s new Edge browser which is bundled with Windows 10. The vulnerability was discovered by Google researcher Clement Lecigne. Microsoft&#8217;s emergency patch was issued this week outside its typical monthly update &#8211; known as Patch Tuesday &#8211; which indicates how serious the vulnerability is.<\/p>\n<p>Describing the critical vulnerability, Microsoft says: &#8220;This security update resolves a vulnerability in Internet Explorer. The vulnerability could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user.&#8221;<\/p>\n<p><strong>Exploited in the wild<\/strong><\/p>\n<p>While those who use Internet Explorer as their main browser will be most impacted, the company indicated that <strong>all Windows users should update their systems as other applications such as Microsoft Office may invoke Internet Explorer components, putting those users at risk.<\/strong><\/p>\n<p>Researchers at Qualys have revealed that the vulnerability (known as CVE\u20132015\u20132502) is already being actively exploited by hackers: &#8220;The vulnerability is actively being exploited in the wild. The attack code is hosted on a malicious webpage that you or your users would have to visit in order to get infected.&#8221;<\/p>\n<p><a href=\"http:\/\/www.ibtimes.co.uk\/microsoft-patches-critical-internet-explorer-flaw-that-hackers-exploit-control-your-pc-1516082\" target=\"_blank\">Full Story&#8230;<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Microsoft has issued a patch for a serious security flaw in Internet Explorer which is being actively exploited by hackers. The zero-day flaw &#8212; known as CVE\u20132015\u20132502 &#8212; allows hackers carry out what are known as &#8220;drive-by download&#8221; attacks where the victim&#8217;s system gets infected without their knowledge, simply by visiting a malicious website. The [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[252],"tags":[276,280,281,282,283,284,285,286,287,288],"class_list":["post-1488","post","type-post","status-publish","format-standard","hentry","category-alerts","tag-alerts","tag-cve-2015-2502","tag-drive-by-download","tag-ie-11-flaw","tag-ie10-flaw","tag-ie7-flaw","tag-ie8-flaw","tag-ie9-flaw","tag-internet-explorer-zero-day-flaw","tag-zero-day"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v24.2 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Alert: New Zero-Day Internet Explorer &#039;Drive By Download&#039; Flaw - BankVault<\/title>\n<meta name=\"description\" content=\"Are you an Internet Explorer user? Zero-Day attacks are attacking Windows computers right now just by visiting a website. Find out how to stay safe online!\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.bankvault.com\/new-ie-drive-by-download-flaw\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Alert: New Zero-Day Internet Explorer &#039;Drive By Download&#039; Flaw - BankVault\" \/>\n<meta property=\"og:description\" content=\"Are you an Internet Explorer user? Zero-Day attacks are attacking Windows computers right now just by visiting a website. Find out how to stay safe online!\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.bankvault.com\/new-ie-drive-by-download-flaw\/\" \/>\n<meta property=\"og:site_name\" content=\"BankVault\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/BankVaultOnline\/\" \/>\n<meta property=\"article:published_time\" content=\"2015-08-24T20:14:32+00:00\" \/>\n<meta name=\"author\" content=\"BankVault\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@bankvaultonline\" \/>\n<meta name=\"twitter:site\" content=\"@bankvaultonline\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"BankVault\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Alert: New Zero-Day Internet Explorer 'Drive By Download' Flaw - BankVault","description":"Are you an Internet Explorer user? Zero-Day attacks are attacking Windows computers right now just by visiting a website. Find out how to stay safe online!","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.bankvault.com\/new-ie-drive-by-download-flaw\/","og_locale":"en_US","og_type":"article","og_title":"Alert: New Zero-Day Internet Explorer 'Drive By Download' Flaw - BankVault","og_description":"Are you an Internet Explorer user? Zero-Day attacks are attacking Windows computers right now just by visiting a website. Find out how to stay safe online!","og_url":"https:\/\/www.bankvault.com\/new-ie-drive-by-download-flaw\/","og_site_name":"BankVault","article_publisher":"https:\/\/www.facebook.com\/BankVaultOnline\/","article_published_time":"2015-08-24T20:14:32+00:00","author":"BankVault","twitter_card":"summary_large_image","twitter_creator":"@bankvaultonline","twitter_site":"@bankvaultonline","twitter_misc":{"Written by":"BankVault","Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.bankvault.com\/new-ie-drive-by-download-flaw\/#article","isPartOf":{"@id":"https:\/\/www.bankvault.com\/new-ie-drive-by-download-flaw\/"},"author":{"name":"BankVault","@id":"https:\/\/www.bankvault.com\/#\/schema\/person\/76e0aa85d5ac5405b47c0760eb9ab639"},"headline":"Alert: New Zero-Day Internet Explorer &#8216;Drive By Download&#8217; Flaw","datePublished":"2015-08-24T20:14:32+00:00","dateModified":"2015-08-24T20:14:32+00:00","mainEntityOfPage":{"@id":"https:\/\/www.bankvault.com\/new-ie-drive-by-download-flaw\/"},"wordCount":276,"commentCount":0,"publisher":{"@id":"https:\/\/www.bankvault.com\/#organization"},"keywords":["Alerts","CVE\u20132015\u20132502","drive by download","IE 11 flaw","IE10 flaw","IE7 flaw","IE8 flaw","IE9 flaw","Internet Explorer Zero Day Flaw","zero day"],"articleSection":["Latest Cybersecurity Threats"],"inLanguage":"en-AU","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.bankvault.com\/new-ie-drive-by-download-flaw\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.bankvault.com\/new-ie-drive-by-download-flaw\/","url":"https:\/\/www.bankvault.com\/new-ie-drive-by-download-flaw\/","name":"Alert: New Zero-Day Internet Explorer 'Drive By Download' Flaw - BankVault","isPartOf":{"@id":"https:\/\/www.bankvault.com\/#website"},"datePublished":"2015-08-24T20:14:32+00:00","dateModified":"2015-08-24T20:14:32+00:00","description":"Are you an Internet Explorer user? Zero-Day attacks are attacking Windows computers right now just by visiting a website. Find out how to stay safe online!","breadcrumb":{"@id":"https:\/\/www.bankvault.com\/new-ie-drive-by-download-flaw\/#breadcrumb"},"inLanguage":"en-AU","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.bankvault.com\/new-ie-drive-by-download-flaw\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.bankvault.com\/new-ie-drive-by-download-flaw\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.bankvault.com\/"},{"@type":"ListItem","position":2,"name":"Alert: New Zero-Day Internet Explorer &#8216;Drive By Download&#8217; Flaw"}]},{"@type":"WebSite","@id":"https:\/\/www.bankvault.com\/#website","url":"https:\/\/www.bankvault.com\/","name":"BankVault","description":"cybersecurity","publisher":{"@id":"https:\/\/www.bankvault.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.bankvault.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-AU"},{"@type":"Organization","@id":"https:\/\/www.bankvault.com\/#organization","name":"BankVault","url":"https:\/\/www.bankvault.com\/","logo":{"@type":"ImageObject","inLanguage":"en-AU","@id":"https:\/\/www.bankvault.com\/#\/schema\/logo\/image\/","url":"https:\/\/www.bankvault.com\/wp-content\/uploads\/2018\/11\/BankVault-Logo-Light.png","contentUrl":"https:\/\/www.bankvault.com\/wp-content\/uploads\/2018\/11\/BankVault-Logo-Light.png","width":1212,"height":275,"caption":"BankVault"},"image":{"@id":"https:\/\/www.bankvault.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/BankVaultOnline\/","https:\/\/x.com\/bankvaultonline"]},{"@type":"Person","@id":"https:\/\/www.bankvault.com\/#\/schema\/person\/76e0aa85d5ac5405b47c0760eb9ab639","name":"BankVault","image":{"@type":"ImageObject","inLanguage":"en-AU","@id":"https:\/\/www.bankvault.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/?s=96&d=mm&r=g","caption":"BankVault"},"url":"https:\/\/www.bankvault.com\/author\/bankvault\/"}]}},"_links":{"self":[{"href":"https:\/\/www.bankvault.com\/wp-json\/wp\/v2\/posts\/1488","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.bankvault.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.bankvault.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.bankvault.com\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.bankvault.com\/wp-json\/wp\/v2\/comments?post=1488"}],"version-history":[{"count":0,"href":"https:\/\/www.bankvault.com\/wp-json\/wp\/v2\/posts\/1488\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.bankvault.com\/wp-json\/wp\/v2\/media?parent=1488"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.bankvault.com\/wp-json\/wp\/v2\/categories?post=1488"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.bankvault.com\/wp-json\/wp\/v2\/tags?post=1488"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}