The recent news about the latest zero day exploit against Internet Explorer 7 reinforces the need for protection against such exploits. So, what is a zero day exploit? A zero day exploit is when an unknown security issue is taken advantage of before it can be fixed or patched.
If your end users were only protected by a corporate firewall and anti-virus software, and were to go to a site that had malicious code, they more than likely would be infected. Most IPS, or web security gateway vendors, would have been able to protect your end users without the need to do any of the “work arounds” by Microsoft and anti-virus vendors. If you don’t have protection against zero day exploits, how are you handling this scenario in your environment?