Microsoft warns of new "Zero day" flaw targeting IE

[Lacky]

If you use IE you deserve to get hacked and your CPU should be filled with viruses because you are a moron.

Made me giggle. :dawg:

 

[Arrow1]

OMG this is actually cringe worthy. Dude, please stop talking about stuff you know nothing about. Zero-Day is just a term hackers use when they find exploits and don't share them. That's it. There's been deadly scripts made and shared between small groups, like UGNazi, Lulzsec and even smaller groups within Anonymous. That's it...

You're making it sound like it's JUST this exploit within IE. No, it's AN exploit within IE that hackers have found and not shared, that's why that article is made WARNING users instead of FIXING it.

Crayo - 2
M.VP - 0

I know it's not within JUST IE, because Firefox has them too. Not so sure about Chrome.

Also, in your evidence, you said exploits have to happen the same day that the program is released. However, in a previous post, you said we just underwent a Zero Day attack. However, if all if the consumers faced that Zero Day attack from INTERNET EXPLORER, how do you figure Zero Day attacks happen on the "Same day" as the program is released?

You fail.. I want an apology from you via post, Crayo.

 

[Crayo]

I know it's not within JUST IE, because Firefox has them too. Not so sure about Chrome.

Somebody fucking shoot me.

Also, in your evidence, you said exploits have to happen the same day that the program is released. However, in a previous post, you said we just underwent a Zero Day attack. However, if all if the consumers faced that Zero Day attack from INTERNET EXPLORER, how do you figure Zero Day attacks happen on the "Same day" as the program is released?

I've never said that. My proof of owning you was all about Zero-days being UNKNOWN exploits, which makes them more dangerous. Known exploits are then whored by "script-kiddys" and become known instantly and patched.

An example was Steam. The was a tool where you could just infect it within an EXE and crypt it, spread it online and you could steal browser passes as well as Steam passes. Steam found out, and stored the passwords in a different place and now you can't get Steam passwords with those tools apart from RAT's.

Your post was all about this exploit being just within IE and now you're saying it's just with browsers. It's not. OUR SITE was hacked by a 0-Day exploit. We had a shell and within was loads of bullshit about UGNazi -- a former well known hacking group -- and we removed it and cleaned our shit. That's more proof that you're wrong.

You fail.. I want an apology from you via post, Crayo.

:dafuq:

 

[Zach]

Crayo & Ariana Grande - 3
The World - 0

 

[Crayo]

You're just tagging along Arianda, I drop you.

 

[Zach]

*Ariana

Crayo how could you... I have you in my favorite users 5 times!

 

[Crayo]

http://krebsonsecurity.com/2012/07/plesk-0day-for-sale-as-thousands-of-sites-hacked/

More proof.

http://download.cnet.com/8301-2007_4-20089152-12/10-year-old-hacker-finds-zero-day-flaw-in-games/

And more.

 

[Arrow1]

Somebody fucking shoot me.


I've never said that. My proof of owning you was all about Zero-days being UNKNOWN exploits, which makes them more dangerous. Known exploits are then whored by "script-kiddys" and become known instantly and patched.

An example was Steam. The was a tool where you could just infect it within an EXE and crypt it, spread it online and you could steal browser passes as well as Steam passes. Steam found out, and stored the passwords in a different place and now you can't get Steam passwords with those tools apart from RAT's.

Your post was all about this exploit being just within IE and now you're saying it's just with browsers. It's not. OUR SITE was hacked by a 0-Day exploit. We had a shell and within was loads of bullshit about UGNazi -- a former well known hacking group -- and we removed it and cleaned our shit. That's more proof that you're wrong.


:dafuq:

WWE Forums is hosted on the internet, thus needing access to a web browser to infect servers. A shell is not that hard to upload to a server if the server has horrible security. Also, if you're using backtrack, you can exploit any server within a few hours if you are an expert on exploitation.

Back on topic, yes, Zero Day exploits are unknown... Do you really think a company would purposely create exploits if they knew about them? Think before you say, Crayo.

Also, just because they are unknown, doesn't mean that they were discovered by hackers, and used on day 0 of the product being released.

 

[Crayo]

WWE Forums is hosted on the internet, thus needing access to a web browser to infect servers. A shell is not that hard to upload to a server if the server has horrible security. Also, if you're using backtrack, you can exploit any server within a few hours if you are an expert on exploitation.

Back on topic, yes, Zero Day exploits are unknown... Do you really think a company would purposely create exploits if they knew about them? Think before you say, Crayo.

Also, just because they are unknown, doesn't mean that they were discovered by hackers, and used on day 0 of the product being released.

Omg you're changing your whole direction on this. Read your original posts and realise you're wrong, accept it. By your original logic WF was compromised BECAUSE of Internet Explorer.

No, we were most likely compromised because some plugins weren't completely secure. More plugins = more risks.

I know exactly what a 0Day exploit is, you have no idea.

 

[Crayo]

An IE exploit that can infect your computer and make it really hard to find the infected file location unless you know a lot about IE exploits.

LMFAO! This is so great! Dude, what do you think Zero Day is? It's an exploit in explorer that can allow hackers to gain access to your PC and infect the mad shit out of it, or just wipe you C drive in general.

That's what you thought it was btw.

 

[Arrow1]

Omg you're changing your whole direction on this. Read your original posts and realise you're wrong, accept it. By your original logic WF was compromised BECAUSE of Internet Explorer.

No, we were most likely compromised because some plugins weren't completely secure. More plugins = more risks.

I know exactly what a 0Day exploit is, you have no idea.

"0Day EXPLOIT", you just said it yourself. :win:

Yes, you are right, my OP was on IE because that is what the attack was on, hence why I posted it in the OP.

I know 0 day exploits exist in more than just IE you silly fool.

Appologize via post, Crayo... I'm waiting :burns:

 

[Crayo]

Wait, all you have done is admit you were wrong.

An IE exploit that can infect your computer and make it really hard to find the infected file location unless you know a lot about IE exploits.

LMFAO! This is so great! Dude, what do you think Zero Day is? It's an exploit in explorer that can allow hackers to gain access to your PC and infect the mad shit out of it, or just wipe you C drive in general.

That's completely false. Nothing I've said in this post is false.

0Day, 0 Day, Zero-day, it makes no difference. None of them are directly associated with IE at all, it's a slang term -- by hackers -- that describes UNKNOWN exploits.

 

[Arrow1]

Wait, all you have done is admit you were wrong.



That's completely false. Nothing I've said in this post is false.

0Day, 0 Day, Zero-day, it makes no difference. None of them are directly associated with IE at all, it's a slang term -- by hackers -- that describes UNKNOWN exploits.

Referring that last quote you posted of me.

I clearly said explorer. Did I say Internet Explorer though? Clearly, you don't know if I was referring to Windows Explorer or Internet Explorer.

And yes, all of the 0day attacks that DO infect your computer, ARE from simply from bugs in the source code of the program.. Many of them being from Internet Explorer nowadays.

 

[Crayo]

This is a piss-poor attempt at avoiding admitting you were wrong, which you WERE. Clearly my multiple sources have educated you a tiny bit. You still have no idea what the general meaning is though lmao.

7-0 Crayo, white-wash. Apology via post please.

 

[Arrow1]

This is a piss-poor attempt at avoiding admitting you were wrong, which you WERE. Clearly my multiple sources have educated you a tiny bit. You still have no idea what the general meaning is though lmao.

7-0 Crayo, white-wash. Apology via post please.

I apologize for not admitting you were right all along. Also, that you have way more knowledge than myself when it comes to network security... that just so happens to be the field I am majoring in, and have studied since I've been in middle school. ity: