New I.E. Zero Day Exploit - Turn off Active Scripting
There is a New IE hole, you can read more about here.
http://isc.sans.org/diary.php?storyid=1226
http://www.microsoft.com/technet/security/advisory/917077.mspx
http://www.websensesecuritylabs.com/alerts/alert.php?AlertID=451
http://www.eeye.com/html/research/alerts/AL20060324.html
So I'm going to use GPO to turn off Active Scripting on all my computers.
Is there any side affect of turning off active scripting?
Thanks....
http://isc.sans.org/diary.php?storyid=1226
http://www.microsoft.com/technet/security/advisory/917077.mspx
http://www.websensesecuritylabs.com/alerts/alert.php?AlertID=451
http://www.eeye.com/html/research/alerts/AL20060324.html
So I'm going to use GPO to turn off Active Scripting on all my computers.
Is there any side affect of turning off active scripting?
Thanks....
0 Comments
[ + ] Show comments
Answers (1)
Please log in to answer
Posted by:
rahvintzu
18 years ago
The official patch will be released mid april during normal release cycle.
It may get pushed fwd so keep an eye on ms.
If u turn off active scripting it will disable java (virtual machine), activex, vbscript and Jscript.
If u want to go down this path then make sure u apply this to ur zones, and have ur corporate sites listed as in the trusted zone.
This flaw actually requires u to visit a site.
The main way of getting hit currently is via spam with embedded links, so a client needs to click the link (user education).
Most antispyware/antivirus will detect the trojan that loads from this attack.
The original posting can be found here:
http://secunia.com/advisories/18680/
Remeber security is all about risk management.
You will need to weigh up if the risk is high enough to suffer a loss of service for ur clients. eg some sites will not work, eg internet banking, e commerce etc.
This loss of business funtion needs to balanced with the chance of it occuring, and the impact of it occuring.... ahh the lovely seesaw.
Regards
Rahvintzu
It may get pushed fwd so keep an eye on ms.
If u turn off active scripting it will disable java (virtual machine), activex, vbscript and Jscript.
If u want to go down this path then make sure u apply this to ur zones, and have ur corporate sites listed as in the trusted zone.
This flaw actually requires u to visit a site.
The main way of getting hit currently is via spam with embedded links, so a client needs to click the link (user education).
Most antispyware/antivirus will detect the trojan that loads from this attack.
The original posting can be found here:
http://secunia.com/advisories/18680/
Remeber security is all about risk management.
You will need to weigh up if the risk is high enough to suffer a loss of service for ur clients. eg some sites will not work, eg internet banking, e commerce etc.
This loss of business funtion needs to balanced with the chance of it occuring, and the impact of it occuring.... ahh the lovely seesaw.
Regards
Rahvintzu
Rating comments in this legacy AppDeploy message board thread won't reorder them,
so that the conversation will remain readable.
so that the conversation will remain readable.