samedi 25 février 2017

Google releases details of unpatched Internet Explorer and Microsoft Edge vulnerabilty

Not content with publishing details of an unpatched Windows bug, Google has now gone public with a security vulnerability in both Microsoft Edge and Internet Explorer. Going under the description of "Type confusion in HandleColumnBreakOnColumnSpanningElement", the bug has the potential to allow an attacker to execute malicious code. The vulnerability has been assigned the code CVE-2017-0037, and details of the flaw have been published under the terms of Google's Project Zero. Microsoft was notified about the problem 90 days ago, and as the company failed to patch it Google has made the problem public. An explanation of the browser bug… [Continue Reading]


Aucun commentaire:

Enregistrer un commentaire