Microsoft introduced in Internet Explorerv version 7 a “protected mode” intended to prevent exploit code from accessing sensitive parts of Windows (like Registry settings, and more).

However, a group of Verizon Researchers wrote a paper (available here) on a way to exploit an unpatched vulnerability to gain access to all machines having the Local Intranet Zone enabled.

If confirmed, this by-pass offers a way to carry out stealthy drive-by exploits even when victims are using recent versions of Internet Explorer with a feature known as Protected Mode, as it combines the facts that sockets are not subject to Mandatory Integrity Control and that sites in the Local Intranet Zone are rendered with Protected Mode disabled.

UP4B offers a wide range of process and network analysis to make sure that your network is protected against what is really important for your business: information leak, network protection (penetration testing,…), network availability and more.

Feel free to contact us for more information on our IT Security services and get your company IT Sec ready.