Home » News » Internet News » Internet Explorer bug could affect millions, Microsoft doesn’t have a fix

Internet Explorer bug could affect millions, Microsoft doesn’t have a fix

by | Go to comments

Share:
Internet Explorer bug

Microsoft has warned users of an Internet Explorer bug that could let hackers into your computer and access personal data.

The bug affects Internet Explorer versions from 6 to 11 and Microsoft is already aware of “limited, targeted attacks” as a result of the vulnerabilities in the browser.

Microsoft has yet to deliver a patch for the issue, which could affect millions of users, especially as the latest NetMarket Share report suggests Internet Explorer accounts for roughly 58 per cent of the global browser market.

“The vulnerability is a remote code execution vulnerability. The vulnerability exists in the way that Internet Explorer accesses an object in memory that has been deleted or has not been properly allocated,” explained the Microsoft blog post. “The vulnerability may corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user within Internet Explorer.”

“An attacker could host a specially crafted website that is designed to exploit this vulnerability through Internet Explorer and then convince a user to view the website.”

If you’re a Windows XP user, this news should be particularly troublesome for you, as Microsoft officially stopped supporting the OS earlier this month, meaning you will not get a security patch for the latest vulnerability.

“An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.”

Although Microsoft has offered some workarounds for the Internet Explorer bug on the official Security TechCentre site, but we advise using an alternative browser until the vulnerability is patched.

Microsoft says it will “take the appropriate action to protect our customers, which may include providing a solution through our monthly security update release process, or an out-of-cycle security update, depending on customer needs.”

Read more: Best laptops 2014

Go to comments
comments powered by Disqus