先のエントリ「IE6,7,8のゼロデイ脆弱性(CVE-2012-4792)の対処法」で紹介したIE6~8のゼロデイ脆弱性(CVE-2012-4792)については、Fix Itによる回避策が提供されていますが、これを回避する攻撃が開発されたようです。 Researchers at Exodus Intelligence reported today they have developed a new attack that bypasses the FixIt issued by Microsoft. They were able to bypass and compromised a fully-patched system using some variation of the exploit published this week. https://isc.sans.edu/diary
![EMET3.5でIEを防御する(CVE-2012-4792)](https://cdn-ak-scissors.b.st-hatena.com/image/square/b76ae3b9d4474cab32d684dd062a2119bf2cc6a3/height=288;version=1;width=512/https%3A%2F%2F2.bp.blogspot.com%2F-ZiIYTzrY8f4%2FUOzmkErEuqI%2FAAAAAAAADvE%2F26zyxkUkqw8%2Fw1200-h630-p-k-no-nu%2Femet-001.png)