cancel
Showing results for 
Search instead for 
Did you mean: 
Post a Question
ED
Silver

Internet Explorer zero-day security hole

Microsoft released yesterday an emergency (unscheduled) patch to fix a zero-day security hole in Internet Explorer.

https://blogs.technet.microsoft.com/msrc/2018/12/19/december-2018-security-update-release-2/

CVE-2018-8653. 

Checked IPS updates, not yet there. Waiting patiently Smiley Happy 

7 Replies

Re: Internet Explorer zero-day security hole

Why not fix IE as that patch is available already ? Waiting for CP instead is real loyality but not good when seen from a security standpoint...

ED
Silver

Re: Internet Explorer zero-day security hole

Because not everyone lives in a perfect world where security updates are rolled out right away and forced to be installed Smiley Happy 

Re: Internet Explorer zero-day security hole

I do know, this is why i can make my living ;-)

Employee
Employee

Re: Internet Explorer zero-day security hole

Hello,

We will release a dedicated IPS protection for this CVE by EOD.

Danny
Jade

Re: Internet Explorer zero-day security hole

In the meantime everyone who is in urgent need to detect & prevent this can use the Snort rules created by Cisco yesterday and implement it within Check Point as described here.

Dan_Roddy
Copper

Re: Internet Explorer zero-day security hole

In the past when I had a point IPS product, analysts work on the back channel and I routinely got zeroday filters on the morning of the announcement of the zero-day.  Are Checkpoint security analysts plugged in to the back channel communications like this?

0 Kudos
Admin
Admin

Re: Internet Explorer zero-day security hole

We’re definitely part of the relevant programs with Microsoft and Adobe.

0 Kudos