Avast WEBforum

Consumer Products => Avast Free Antivirus / Premium Security (legacy Pro Antivirus, Internet Security, Premier) => Topic started by: starchase on December 19, 2008, 02:50:55 PM

Title: Zero-day Internet Explorer Flaw--Anything for Avast to Check?
Post by: starchase on December 19, 2008, 02:50:55 PM

Concerning the IE flaw recently in the news, visiting certain web sites can cause malware to be installed on unsuspecting users machines.

Is there any malware involved in this exploit that Avast can scan for?  I'm careful about where I surf and what I download, but other users on my machine may not be so careful, or aware that this problem exists with IE.  I did patch the machine yesterday, but if Avast has any detection abilities for any of the malware that might be involved in this exploit I'd like to be sure my machine is not infected.

Thanks.

Title: Re: Zero-day Internet Explorer Flaw--Anything for Avast to Check?
Post by: igor on December 19, 2008, 04:24:38 PM

A detection for the exploit itself was added quite soon after it became known - so I'd say you should be protected for quite some time already.
Regarding the particular malware being distributed through the exploit - it's hard to say; there are quite a lot of infected sites, the number is growing, and the distributed malware keeps changing.

Title: Re: Zero-day Internet Explorer Flaw--Anything for Avast to Check?
Post by: BrBrasil on December 19, 2008, 04:32:53 PM

Anyway, if the exploit is detected by avast, then the malware related to it will not get into your machine, right?

Thanks for your time,

BrBrasil

Title: Re: Zero-day Internet Explorer Flaw--Anything for Avast to Check?
Post by: polonus on December 19, 2008, 04:34:10 PM

Hi starchase,

The best advice here, patch that vulnerability in Internet Explorer as soon as you can, else there are new ways to infect your browser e.g. from an insiduous Word document, while you are browsing Fx or Flock and think you are not vulnerable secretely in the background your IE browser is infected through opening the malicious Word document, I used Open Office for the period of the work-arounds at least,

polonus

Title: Re: Zero-day Internet Explorer Flaw--Anything for Avast to Check?
Post by: starchase on December 19, 2008, 05:45:28 PM

Greetings All:

As I wrote in the original post, I patched my machine the evening the patch was released by Microsoft.  If during the intervening hours my spouse was on the net and came across unknowingly any of the evil web sites that exploit this flaw, I wanted to know if Avast would be able to detect any of the bugs that are involved.  Maybe not, but certainly Avast would be able to tell users, but I don't see anything on their web site.

Title: Re: Zero-day Internet Explorer Flaw--Anything for Avast to Check?
Post by: DavidR on December 19, 2008, 06:50:02 PM

Well I believe you have your answer in the first reply by one of the Alwil team, Igor.

Quote

A detection for the exploit itself was added quite soon after it became known

So it depends on how soon is quite soon, but you would also have to bump into a site that had been hacked to exploit the vulnerability in IE, so I feel the likelihood of being hit would have been relatively low.