Comments on: The “Aurora” IE Exploit Used Against Google in Action

By: mk-job

mk-job — Thu, 29 Jul 2010 17:01:45 +0000

Very nice for Exploit, So Good.

By: Technical Tidbits » Blog Archive » IE6’s slow death

Technical Tidbits » Blog Archive » IE6’s slow death — Wed, 16 Jun 2010 22:39:34 +0000

[...] planned, but that doesn’t make the risk any less meaningful. Apparently, the Aurora exploit isn’t all that complicated to use in its most basic [...]

By: circuit breaker

circuit breaker — Thu, 10 Jun 2010 01:09:08 +0000

CNBC broadcast, perhaps the most amusing way seen thus far of describing the patch for the ‘Aurora bug‘ that famously affected Google late last

By: Mini circuit breaker

Mini circuit breaker — Thu, 10 Jun 2010 01:08:44 +0000

it is not good idea to hear this.

By: Praetorian Prefect | IEPeers – A New Internet Explorer Zero Day Vulnerability

Thu, 11 Mar 2010 23:33:32 +0000

[...] second major instance of this type of error in Internet Explorer recently (with the well publicized ‘Google Aurora’ attack being associated with a similar type of code defect in the popular [...]

By: Praetorian Prefect | Microsoft’s Google Attack Patch?

Praetorian Prefect | Microsoft’s Google Attack Patch? — Sat, 27 Feb 2010 04:27:14 +0000

[...] a CNBC broadcast, perhaps the most amusing way seen thus far of describing the patch for the ‘Aurora bug‘ that famously affected Google late last [...]

By: [Video] Aurora in Azione | Scena Warez

[Video] Aurora in Azione | Scena Warez — Tue, 23 Feb 2010 17:50:44 +0000

[...] IE Exploit in Action from The Crew of Praetorian Prefect on Vimeo. Il video, tratto da praetorianprefect.com mostra l’hacker che avvia una sessione di Metasploit, sceglie l’exploit ie_aurora, [...]

By: Demo of IE Zero Day used to Hack Google and Adobe | Cyber Loop

Demo of IE Zero Day used to Hack Google and Adobe | Cyber Loop — Sun, 21 Feb 2010 06:26:45 +0000

[...] video at the Praetorian Prefect website demonstrates how Google and the rest have been, according to most news reports, exploited via the [...]

By: Demo of IE Zero Day used to Hack Google and Adobe | Cyberwar Loop

Demo of IE Zero Day used to Hack Google and Adobe | Cyberwar Loop — Sat, 20 Feb 2010 07:14:20 +0000

[...] video at the Praetorian Prefect website demonstrates how Google and the rest have been, according to most news reports, exploited via the [...]

By: Code name “Aurora” « Shimoon Security

Code name “Aurora” « Shimoon Security — Sat, 06 Feb 2010 11:37:15 +0000

[...] video mostra come l’hacker avviando una sessione di Metasploit e scegliendo l’exploit [...]

By: PillolHacking.Net » [Video] Aurora in Azione

PillolHacking.Net » [Video] Aurora in Azione — Sun, 31 Jan 2010 04:04:35 +0000

[...] video, tratto da praetorianprefect.com mostra l’hacker che avvia una sessione di Metasploit, sceglie l’exploit ie_aurora, [...]

By: Governments calling citizens to ditch Internet Explorer | Werx Limited

Governments calling citizens to ditch Internet Explorer | Werx Limited — Thu, 28 Jan 2010 12:09:17 +0000

[...] a video detailing how this hack works in action in case you are like me and interested in the juicy technical [...]

By: Security Advisory zum Thema "Aurora" (CVE-2010-0249) | ProxySG Blog

Security Advisory zum Thema "Aurora" (CVE-2010-0249) | ProxySG Blog — Wed, 27 Jan 2010 14:06:19 +0000

[...] Angriff auch manuell per Policy mit dem ProxySG herausfiltern. Mit folgender Policy kann man den veröffentlichten Exploit Source Code unschädlich [...]

By: Praetorian Prefect | TechCrunched – TechCrunch the Victim of a Defacement

Tue, 26 Jan 2010 10:03:57 +0000

[...] The site (91.121.221.39) that the homepage was linked to appears to be a warez site hosted in Roubaix, France, hosted by ISP Ovh Systems. TechCrunch is of course hosted by Rackspace.com, which was recently in the news because of the role their servers played in the ‘Aurora’ attack on Google. [...]

By: Noticias 25-Enero-2010 - La Web de Programación

Noticias 25-Enero-2010 - La Web de Programación — Mon, 25 Jan 2010 01:21:34 +0000

[...] Información del exploit de Internet Explorer que emplearon contra Google [...]

By: default_dev

default_dev — Sat, 23 Jan 2010 06:17:58 +0000

I use iPhone SDK at work. Every time you attempt to just “stare” at a freed object it throws an exception and kills your process at once. It is good to know that in Windows everything is more gentle.

By: Internet Explorer Zero Day attack - Remote Exploit Forums

Internet Explorer Zero Day attack - Remote Exploit Forums — Thu, 21 Jan 2010 23:59:51 +0000

[...] (under review) And some more random links: Code Used in Google Attack Now Public : programming Praetorian Prefect | The “Aurora” IE Exploit Used Against Google in Action [...]

By: Gabriel

Gabriel — Thu, 21 Jan 2010 17:44:16 +0000

Excellent presentation, as always. It worries me that people are still using IE6, pretty much proven to be the most insecure browser in the history of browsing, though.

By: Downloads of Firefox and Opera Soar in Germany Following Government Advisory

Downloads of Firefox and Opera Soar in Germany Following Government Advisory — Thu, 21 Jan 2010 13:41:57 +0000

[...] in question affects all versions of Internet Explorer since IE 6 and can be seen in action over here. Microsoft is expected to release a patch later today to fix the [...]

By: Praetorian Prefect | Microsoft Posts Advanced Notification for Out of Band Patch

Thu, 21 Jan 2010 00:31:47 +0000

[...] cycle. The update is for the Internet Explorer vulnerability which was reported to be used by the Aurora exploit to attack Google and several other companies. The last time Microsoft released an out of band patch [...]

By: CVE-2010-0249 – Exploit – Comele – Hydraq – Aurora – IExplorer 0day « Weblog for all users.

Wed, 20 Jan 2010 19:09:19 +0000

[...] praetorianprefect – Demonstration of exploiting the flaw using the new module from Metasploit: http://praetorianprefect.com/archives/2010/01/the-aurora-ie-exploit-in-action/ [...]

By: Операция «Aurora». Удар по Google и другим » Информационная безопасность » plate.pp.ua

Wed, 20 Jan 2010 14:47:14 +0000

[...] сам эксплойт. Ссылка на Praetorian Project. Ссылки на сплойт: [...]

By: Internet explorer: KO técnico | El Blog de William

Internet explorer: KO técnico | El Blog de William — Tue, 19 Jan 2010 16:29:53 +0000

[...] Praetorian Prefect Seguimiento de George KurtzCTO El blog de Sergio Hernando [...]

By: Remco Wolvenne » Blog Archive » Gevaarlijke lek IE

Remco Wolvenne » Blog Archive » Gevaarlijke lek IE — Tue, 19 Jan 2010 14:48:12 +0000

[...] de populaire hacktool Metasploit is de exploit voor dit lek nu bekendgemaakt. Daarmee wordt het mogelijk een website neer te zetten waarmee het lek wordt misbruikt. Het [...]

By: Nik

Nik — Tue, 19 Jan 2010 11:56:10 +0000

Could you please publish the actual code of the exploit?

By: Kontrollverlust durch “Operation Aurora” ? – kritische Sicherheitslücke im Internet Explorer - IT-Professional Blog - Port 389

Tue, 19 Jan 2010 10:51:30 +0000

[...] Video – Metasploit / “Aurora” IE Exploit: [1] http://praetorianprefect.com/archives/2010/01/the-aurora-ie-exploit-in-action/ [...]

By: nasreddine

nasreddine — Tue, 19 Jan 2010 09:15:05 +0000

j’ ai besoin de quelqu’”un qui peut me faire comprendree un peu le shell employé ici svp, je suis impatie,t;)good thanks for help kastos@live.com

By: Google Hacked by Chinese Government « UNIX Administratosphere

Google Hacked by Chinese Government « UNIX Administratosphere — Tue, 19 Jan 2010 00:34:05 +0000

[...] The attack against Google has been picked apart; a zero-day exploit in Internet Explorer was the method. The method was covered at CNET and is described in detail by McAfee’s CTO, George Kurtz, in a blog post. The blog Praetorian Prefect has a description and video of the attack in action. [...]

By: Germany & France Say Abandon IE, Microsoft Agrees | Piffey

Germany & France Say Abandon IE, Microsoft Agrees | Piffey — Mon, 18 Jan 2010 23:10:47 +0000

[...] at all you’ll know that the zero-day vulnerability codenamed Aurora (watch it in action on Praetorian Prefect) in Microsoft’s popular Internet Explorer web browser was the cause of the security breaches. [...]

By: Alemania Recomienda No Usar IE

Alemania Recomienda No Usar IE — Mon, 18 Jan 2010 22:58:12 +0000

[...] [...]