New Zero-Day Exploit targeting Internet Explorer Versions 9 through 11 Identified in Targeted Attacks
Is your business still using Windows XP? Now that Microsoft have stopped supporting this version of windows a major security flaw has been identified. Protect your business and data and speak to us at Smart Computers on how to upgrade your computer network and systems!
A new zero-day vulnerability that resides in all versions of Internet Explorer has been spotted in the wild, Microsoft confirmed late Saturday.
The vulnerability, which could allow remote code execution, is being used in “limited, targeted attacks,” according to an advisory issued by Microsoft. While all versions of the web browser, IE 6 through 11, are affected by the vulnerability, attacks are currently targeting IE versions 9, 10 and 11, according to security firm FireEye, which first reported the flaw Friday.
An attack could be triggered by luring visitors to a specially crafted web page, Microsoft explained.
“The vulnerability exists in the way that Internet Explorer accesses an object in memory that has been deleted or has not been properly allocated,” Microsoft said. “The vulnerability may corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user within Internet Explorer.”
Microsoft said it is investigating the vulnerability and may issue an out-of-cycle security update to address the issue. If you are still using Microsoft Windows XP you will not be protected by the security update. Contact us today for help and advice upgrading from XP – 01242 580654