Exploits for nasty Internet Explorer bug found on hacking forums Representational image depecting cybersecurity protection
In addition to sharing working exploits, threat actors are not sharing tutorials to help others fabricate their own attacks that make use of the recently discovered zero-day vulnerability in Internet Explorer’s browser engine Trident, also known as MSHTML, according to reports.
Microsoft disclosed the vulnerability, tracked as CVE-2021-40444, last week saying that it could be weaponized through malicious documents with ActiveX content to execute commands on a victim’s computer remotely.
Soon after Microsoft’s disclosure, security researchers were able to spot documents on the internet with ActiveX content designed specifically to take advantage of CVE-2021-40444.
We’re looking at how our readers use VPNs with streaming sites like Netflix so we can improve our content and offer better advice. This survey won’t take more than 60 seconds of your time, and we’d hugely appreciate if you’d share your experiences with us.
BleepingComputer now reports that threat actors have started circulating guides and information regarding the vulnerability on underground hacking forums to help other malicious users craft exploits based on CVE-2021-40444.
No cure, only mitigations
Although software companies don’t disclose a vulnerability, until it has been fixed, Microsoft’s hand was forced after security vendors EXPMON and Mandiant both spotted the vulnerability being exploited.
In response, Microsoft decided to disclose the vulnerability and shared mitigations, which involve blocking ActiveX controls and Microsoft Office document previews in Windows Explorer, to defang the exploit, even as the software giant works to create a patch to plug the vulnerability.
However, researchers have since been able to modify the exploit not to use ActiveX, effectively bypassing Microsoft’s mitigations. Threat actors reportedly had already discovered this workaround, and used it to create more spurious documents and instructions.
The information is reportedly simple to follow and enables anyone to create their own working version of the CVE-2021-40444 exploit.
The good news however is that security programs such as Microsoft Defender have been equipped to detect and flag such malicious documents, which is the best users can hope for in the absence of an official fix.
Via BleepingComputer
In addition to sharing working exploits, threat actors are not sharing tutorials to help others fabricate their own attacks that make use of the recently discovered zero-day vulnerability in Internet Explorer’s browser engine Trident, also known as MSHTML, according to reports. Microsoft disclosed the vulnerability, tracked as CVE-2021-40444, last week…
Recent Posts
- Apple’s earnings show that, yeah, it’s really time for some new iPads
- Spotify Supremium leak reveals what the new tier and some features may look like at launch
- When notifications remind us of things we’d rather forget
- Can Steam Deck get even better? Nvidia’s expanded GeForce NOW support is a resounding yes
- Surprisingly cheap Pro monitor provides unique features that even Apple Studio display doesn’t — AOC’s new monitors offer KVM capability, a whopping 11 ports and Hollywood-grade Calman software compatibility
Archives
- May 2024
- April 2024
- March 2024
- February 2024
- January 2024
- December 2023
- November 2023
- October 2023
- September 2023
- August 2023
- July 2023
- June 2023
- May 2023
- April 2023
- March 2023
- February 2023
- January 2023
- December 2022
- November 2022
- October 2022
- September 2022
- August 2022
- July 2022
- June 2022
- May 2022
- April 2022
- March 2022
- February 2022
- January 2022
- December 2021
- November 2021
- October 2021
- September 2021
- August 2021
- July 2021
- June 2021
- May 2021
- April 2021
- March 2021
- February 2021
- January 2021
- December 2020
- November 2020
- October 2020
- September 2020
- August 2020
- July 2020
- June 2020
- May 2020
- April 2020
- March 2020
- February 2020
- January 2020
- December 2019
- November 2019
- December 2011