Did you think we were done with Internet Explorer security blunders now that many of us have moved on to the newer, better Windows 10? Microsoft has proven us wrong, yet again!
Critical IE exploits affect Windows 10:
Internet Explorer has always remained at the center of security flaws affecting every version of the Windows operating system, now even including our shiny new Windows 10. Microsoft has released six security bulletins this Tuesday fixing over 30 critical IE exploits that were affecting every version of Windows from Vista to Windows 10.
One of these security bulletins, rated critical, included fixes for vulnerabilities that could be exploited by an attacker to execute remote code on the victim's computer by luring them through a specially crafted website using the Internet Explorer. Privilege escalation, information disclosure and memory corruption were some of the troubles these vulnerabilities could create. This exploit was present in Internet Explorer versions 7, 8, 9, 10, and 11 with the last one being installed on both the 32-bit and 64-bit Windows 10 systems.
This [MS15-106] security update resolves vulnerabilities in Internet Explorer. The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited these vulnerabilities could gain the same user rights as the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.
This batch of security updates also fixes several vulnerabilities in Microsoft Edge, Windows kernel and Office, but they were rated "important" instead of the more scary "critical" flag.
Microsoft shares that there is no evidence of any of these vulnerabilities having been exploited in the wild. However, consumers are highly recommended to install the patch via Windows Update to fix the vulnerabilities. For the users of Internet Explorer, it is time to move on to better and more secure browsers, including Microsoft's Edge to avoid having security issues.
- New Adobe Flash Player Zero-Day Vulnerability Enables Attackers to Hijack Target Computers
For more details, please visit Microsoft.
