Microsoft’s bequest browser, Internet Explorer, may compel you to reboot your PC soon.
The remote code execution IE Zero-day vulnerability in Internet explorer scripting engine allows threat actors to execute arbitrary code in the context of the user.
Manipulators who successfully exploited the IE Zero-day vulnerability could leverage security privileges of the logged in user & execute malevolent code to corrupt system memory. In other words, if you are logged on with administrative user rights, this vulnerability could be exploited to take full control of an affected system. Threat actors can leverage this opportunity to:
This Zero-day vulnerability is tracked as CVE-2018-8653 & can further be exploited in the following ways:
Microsoft recently released an out-of-band security update, to fix Internet Explorer RCE Zero-Day vulnerability that has been wildly abused.
The security update addresses the vulnerability by modifying how Internet explorer scripting engine handles objects in memory. Users who have the Windows Update enabled & have applied the latest security updates are protected automatically against RCE zero day vulnerability.
These updates can be manually downloaded from Microsoft Update Catalog Website.
The attacker will get code execution rights under the same privileges the victim has. If the victim is using an account with limited access, the damage can be contained to simple operations, albeit this might be enough to plant malware on a victim’s computer.
Removing privileges to the jscript.dll file for the Everyone group by executing the following commands on command prompt window will mitigate Internet Explorer RCE Zero-Day vulnerability without having to install the updates.
Enter the following command at an administrative command prompt to limit access to JScript.dll
Icacls %windir%\system32\jscript.dll /E /P everyone:N
cacls %windir%\syswow64\jscript.dll /E /P everyone:N
cacls %windir%\system32\jscript.dll /E /R everyone
cacls %windir%\syswow64\jscript.dll /E /R everyone
Users however are recommended to install latest Windows updates to keep PC risk free.
Subscribe to our newsletter today to receive updates on the Latest News and Threats.
The researchers at Virus Removal Guidelines are dedicated to track down the latest vulnerabilities which may infringe your system security. Our team of expert performs a detailed research about every malware infection before educating our users about the same.
Want to stay informed about the latest threats & malware? Sign up for our newsletter & learn how to get rid of all types of threats from your computer.