Company

ABOUT ESENTIRE

eSentire is The Authority in Managed Detection and Response Services, protecting the critical data and applications of 2000+ organizations in 80+ countries from known and unknown cyber threats. Founded in 2001, the company’s mission is to hunt, investigate and stop cyber threats before they become business disrupting events.

About Us →

Leadership →

Careers →

Event Calendar →

Newsroom →

EVENT CALENDAR

Apr

Data Connectors St. Louis

May

Milwaukee Cybersecurity Summit

May

RSA Conference

May

Secure360 Conference

Jun

Dallas Technology Summit

View Calendar →

LATEST PRESS RELEASE

Apr 03, 2024

Global Cybersecurity Solutions Provider, eSentire, Launches a New Technology Innovation Center in India

Bengaluru, India – April 4, 2024 – eSentire, Inc., the Authority in Managed Detection and Response (MDR), announced today the opening of its new Technology Innovation Center in India, under the legal entity eSentire India Private Limited. The Innovation Center will extend eSentire’s global…

View Newsroom →

Partners

PARTNER PROGRAM

We provide sophisticated cybersecurity solutions for Managed Security Service Providers (MSSPs), Managed Service Providers (MSPs), and Value-Added Resellers (VARs). Find out why you should partner with eSentire, the Authority in Managed Detection and Response, today.

LEARN MORE →

Apply to become an e3 ecosystem partner with eSentire today.

APPLY NOW →

Speak With A Security Expert Now

TALK TO AN EXPERT

The Threat:
On January 17^th, 2020, Microsoft disclosed a memory corruption vulnerability in Internet Explorer's Scripting Engine, noting it is actively being exploited in limited targeted attacks [1].

To successfully exploit this vulnerability, an attacker would be required to convince a victim to open a crafted HTML document or webpage via Internet Explorer. If exploited, an unauthenticated attacker could remotely execute malicious code in the context of the current user. It is recommended that organizations reduce their risk by discouraging use of Internet Explorer or by implementing the workarounds offered by Microsoft.

What we’re doing about it:

Monitoring this topic for further developments.
eSentire is actively evaluating detection methods for the exploitation of this vulnerability.

What you should do about it:

Consider replacing Internet Explorer with alternative modern browsers such as Microsoft Edge, Mozilla Firefox or Google Chrome
Technical workarounds are available from Microsoft [1].
- Customers are encouraged to asses the potential impact of implementing Microsoft’s workarounds prior to implementation.
- Current workarounds from Microsoft may cause issues for any websites or applications that relies on jscript.dll.
- esENDPOINT customers may request information on jscript.dll usage in their environment from the eSentire Security Operations Center.

Additional information:

This vulnerability (CVE-2020-0674) allows an unauthenticated attacker to execute arbitrary code remotely if they can convince a user to run the code. Malicious code can come packaged in any maliciously crafted web page or document compatible with Internet Explorer Scripting Engine, a default service on Windows devices [2].

To exploit this vulnerability the attacker would need to serve the victim malicious content via Internet Explorer. In one scenario the method of exploitation is via email, with the attacker serving malicious links or documents leading to the Scripting Engine exploit.

Currently, there is minimal technical information for this vulnerability. Microsoft has stated that there have been limited targeted attacks. At this time eSentire has not observed attacks exploiting this vulnerability, nor is there public information on the confirmed attacks.

References:

[1] https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV200001

[2] https://kb.cert.org/vuls/id/338824/

ESENTIRE SERVICES

Managed Detection and Response

Digital Forensics and Incident Response

Exposure Management Services

ESENTIRE PLATFORM AND PEOPLE

Extended Detection and Response (XDR)

Security Operations Center (SOC)

Threat Response Unit (TRU)

Cyber Resilience Team

eSentire MDR for Microsoft

USE CASES

Ransomware

Cybersecurity Compliance

Zero Day Attacks

Cloud Misconfiguration

Third-Party Risk

Do More With Less

Cyber Risk

Cyber Insurance

Sensitive Data Security

INDUSTRIES

Insurance

Construction

Finance

Legal

Manufacturing

Private Equity

Healthcare

Retail

Food Supply

Government and Education

24/7 MDR SIGNALS

Network

Endpoint

Log

Cloud

Insider Threat

MDR Pricing

From The Blog

Don't Take the Bait: The XWorm Tax Scam

SolarMarker's Shift to PyInstaller Tactics

Tax Season Alert: Beware of GuLoader and Remcos RAT

Resources

Case Studies

TRU Intelligence Center

Cybersecurity Tools

Videos

Reports

Webinars

Data Sheets

Real vs. Fake MDR

Blogs

Security Advisories

SECURITY ADVISORIES

Zero-Day Vulnerability Impacts Palo Alto (CVE-2024-3400)

XZ Utils Supply Chain Compromise

ABOUT ESENTIRE

About Us →

Leadership →

Careers →

Event Calendar →

Newsroom →

EVENT CALENDAR

Data Connectors St. Louis

Milwaukee Cybersecurity Summit

RSA Conference

Secure360 Conference

Dallas Technology Summit

LATEST PRESS RELEASE

Global Cybersecurity Solutions Provider, eSentire, Launches a New Technology Innovation Center in India

PARTNER PROGRAM

Search our site

Quick Links

Multi-Signal Managed Detection and Response

24/7 Global Security Operations Centers

eSentire MDR Pricing

Cybersecurity Tools

TRU Intelligence Center

Case Studies and Customer Testimonials

Get Started →

The Proven Choice for
Managed Detection and Response

Sales and
Customer Support