Internet Explorer (V9 or 10) Vulnerability
1027, 27 Feb 2014Microsoft advises that persons using the Microsoft browser Internet Explored (Versions 9 or 10) are vulnerable to a very nasty bit of malware which can take over your computer if you simply visit an infected site. It was first noticed by visitors to the VFW web site.
The attack, known as "Operation SnowMan" and identified by CVE-2014-0322, installs a backdoor that lets the attackers remove data from an infected computer. Ominously, it operates on a "drive by" vector -- you don't need to do anything wrong; visit an infected site, and if you're running IE9 or IE10, you're infected.
If you are using those versions, you need as a minimum to download and install the patch from Micsosoft (or, even better, Install IE11 as a replacement for the affected browsers.)
The download is at Microsoft, who have acknowledged the problem and posted a "Fix it" as part of Security Advisory 2934088.(https://support.microsoft.com/kb/2934088#FixItForMe)
(if you wish to post a comment on this bulletin, please log in)