
Microsoft confirmed Saturday that a new security vulnerability was affecting all versions of Internet Explorer by allowing "limited, targeted attacks." Microsoft said it was investigating the security glitch, which allowed for remote code execution, and affected all versions of Internet Explorer -- IE 6 through 11. Currently versions 9, 10 and 11 are being attacked, according to FishEye, the research firm that alerted Microsoft to the vulnerability Friday. The attacks are taking advantage of "use after free" vulnerability -- a little known vulnerability that allows data corruption after memory has been released.The vulnerability also bypasses both Windows DEP (data execution prevention) and ASLR (address space layout randomization) protections, according to FireEye. "The APT [advanced persistent threat] group responsible for this exploit has been the first group to have access to a select number of browser-based 0-day exploits (e.g. IE, Firefox, and Flash) in the past," FireEye said. "They are extremely proficient at lateral movement and are difficult to track, as they typically do not reuse command and control infrastructure." Windows server versions that run on Internet Explorer in the default Enhanced Security Configuration are not vulnerable unless an affected site is placed in the Internet Explorer Trusted sites zone. Microsoft said it was investigating the vulnerability and would issue an security update to address the problem.
GMT 17:56 2018 Wednesday ,17 January
Ericsson to write down 1.4 billion euros in fourth quarterGMT 19:16 2018 Saturday ,13 January
China shuts Marriott website over Tibet error, scolds other firmsGMT 17:31 2018 Thursday ,11 January
UK group bids for Europe's biggest aluminium smelterGMT 17:24 2018 Thursday ,11 January
UK supermarket Sainsbury's lifts outlook after bumper ChristmasGMT 17:52 2018 Tuesday ,09 January
H&M removes 'black boy' ad after racism accusationGMT 19:38 2018 Wednesday ,03 January
Petrobras pay $2.95bn to settle US class action on corruptionGMT 13:49 2018 Wednesday ,03 January
China’s Ant Financial drops $1.2 billion MoneyGram deal as US approval failsGMT 17:47 2017 Sunday ,31 December
BA owner to buy bankrupt Austrian airline Niki
Maintained and developed by Arabs Today Group SAL.
All rights reserved to Arab Today Media Group 2025 ©
Maintained and developed by Arabs Today Group SAL.
All rights reserved to Arab Today Media Group 2025 ©
Send your comments
Your comment as a visitor