Zero-day Ie Exploit

Brandon

By Brandon,
in Security Alerts

 Share Followers 0

Recommended Posts

Brandon

Brandon

Posted
Posted

Security researchers have published a zero-day exploit for Internet Explorer this week that allows remote code execution on most variants of Windows.

The vulnerability targeted by the exploit was originally announced in May as a stability issue resulting in the browser closing. With the release of the exploit code, however, security researchers have demonstrated that malicious code can be remotely executed after convincing a user to click on a link.

The public proof-of-concept exploit launches the Calculator included with Windows; however this could be easily modified to more malicious executables.

Microsoft has expressed concern that this new vulnerability was not disclosed to them first, potentially putting users at risk. Although there is currently no patch for this vulnerability, disabling Active Scripting or switching to an alternate browser such as Mozilla Firefox would effectively mitigate the risk.

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
 Share
Followers 0
Go to topic listing