Another day, another code execution…

By now we know that the recent attacks on Google were generated via a vulnerability in Internet Explorer. While the story brings together two of the most widely used computing tools, let’s not lose sight of what this really is. At its core, this attack is a basic remote code execution – this means there is a bug in IE that enables a hacker to run a malicious piece of code on a piece of software. In this instance, the affected company was Google.
Vulnerabilities that lead to remote code execution are the most interesting from a hacker’s perspective as these vulnerabilities give complete control of the compromised system to the hacker thereby enabling them to launch a variety of attacks, including denial-of-service, spam messaging or phishing attacks. According to the Frost & Sullivan Vulnerability Tracker for 1H2009, more than 82.5 percent of reported vulnerabilities use remote code execution.
Client-side attacks, like the Internet Explorer vulnerability, offer hackers the largest target base for enabling remote code execution. In September, we published the Top Cybersecurity Risk Report in conjunction with Qualys and SANS, which indicated client-side attacks like this are the number one risk for organizations today. This type of vulnerability leaves the door open for exploits that result in data loss or worse, thereby damaging brand reputation and leading to financial and legal issues.
The report (continue reading...)