Guest Posted February 26, 2020 Posted February 26, 2020 (edited) 18 minutes ago, Vistapocalypse said: Thanks for clarifying that. Microsoft nevertheless rates the vulnerability's severity as Critical for IE 11 on Windows 7, but only Moderate for IE 9 on Server 2008 SP2. I'm not familiar with OSArmor, but you've got me wondering if it could offer a better solution for Vista, i.e. block any process from jscript but not jscript9 (sorry if OT). I am not sure if you want to ask me something about NVT OSA. This software can also be installed with Windows XP, in my opinion it is fundamental for the protection of an OS especially if no longer supported by Microsoft. Moreover, it also has a basic Anti-Exploit functionality that integrates perfectly with MBAE. https://www.novirusthanks.org/products/osarmor/ Edited February 26, 2020 by Sampei.Nihira
Tripredacus Posted February 27, 2020 Posted February 27, 2020 22 hours ago, Vistapocalypse said: Thanks for clarifying that. Microsoft nevertheless rates the vulnerability's severity as Critical for IE 11 on Windows 7, but only Moderate for IE 9 on Server 2008 SP2. It is probably because the enhanced security mode is enabled by default on IE on Server OS. With luweitest PoC above, does this always depend on creating an ActiveX control? If so, aren't we well past the point of even thinking of having ActiveX enabled on a device that can access the internet?
Recommended Posts
Please sign in to comment
You will be able to leave a comment after signing in
Sign In Now