MS08-078 Emergency IE patch

Microsoft’s latest IE out of band patch release needs to be installed right away. The number of infected websites is growing at an alarming rate – even people visiting legitimate websites are getting hacked with this exploit. Patch it now – just do it.

Why did this come out as an out of band release? It looks like Microsoft was informed of the IE zero day at the same time as everyone else – namely, last Tuesday (patch Tuesday). Based on Microsoft MSRC blog posts, starting on Tuesday, Microsoft studied the exploit and reviewed source code and determined that it impacted all versions of IE. From that point on, it can be assumed that Microsoft has been working quickly on a patch for all versions of IE.

Microsoft had to determine how serious the issue was – as that gave them guidance as to whether or not to release an out of band patch or wait until the next monthly cycle. By late last week, Microsoft was aware that this issue was starting to infect user’s systems at a faster rate than they’ve seen with past zero day exploits. Specifically, attackers were loading the exploit on legitimate websites so that even users who visit only non-nefarious websites might also get infected. Based on this level of data, it’s my belief that Microsoft decided the issue warranted an out of band patch release.

Researching, fixing, testing, and releasing a security patch within an eight day window is an incredible feat – especially given the need to support all versions of IE across all platforms and languages. This is an ‘all hands on deck’ response from Microsoft – I don’t think we’ll see this as the norm for less critical patches in the future as it is quite disruptive to their own processes.

Now, it’s equally as important for customers to roll out this patch to all of their systems as soon as possible. I’d bet you a cookie that many companies can’t get it rolled out as quickly as Microsoft got it built.

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: