According to Microsoft?s confirmation, a new zero day vulnerability has been found to affect each version of Internet Explorer from versions 6 to 11. This means that over a quarter of the entire browser market is affected.
Microsoft is scrambling to fix the security hole that, at one of its worst possible scenarios, could grant the attacker with user rights which are the same as that of the official user. These attacks that are taking advantage of the security hole are largely targeting IE versions 9 thru 11 with some called a ?use after free? attack. Basically, the attack corrupts data as soon as the memory has been released. This usually happens after users are led to phony or shady websites.
Microsoft stated: ?The vulnerability exists in the way that Internet Explorer accesses an object in memory that has been deleted or has not been properly allocated. The vulnerability may corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user within Internet Explorer. An attacker could host a specially crafted website that is designed to exploit this vulnerability through Internet Explorer and then convince a user to view the website.?
Those who are still using Windows XP should also consider switching to a more recent operating system as Microsoft has ended support for Windows XP and hackers can most likely target not only this new browser security flaw, but also the operating system?s security flaws as well. Microsoft won?t be able to provide any assistance as well since they have already dropped it.
Hopefully, Microsoft is able to release a fix relatively soon as the large percentage of Internet Explorer users worldwide is at risk to this security flaw. If possible, try to stay away from using Internet Explorer until a patch has been released by Microsoft and help your friends do the same.
A lot of new major security lapses are being found one after another. A month back, it was the Heartbleed bug which also affected a majority of Internet users. Now, we have one of the most popular browsers also affected by an alarming security flaw.
Photo Source: Microsoft official website