Language Selection

English French German Italian Portuguese Spanish

M$ investigates potential new IE flaw

Filed under
Microsoft

Microsoft is investigating a report of a new, unpatched flaw in Internet Explorer that could expose users of the ubiquitous Web browser to attacks.

An attacker could craft a malicious Web site that takes advantage of the flaw and gain control over the PCs that visit the Web site or install malicious software on those systems, a representative of the French Security Incident Response Team (FrSIRT) said in an e-mail interview Wednesday. FrSIRT rates the issue "critical," its most serious classification.

Exploit code for the flaw is available on the Internet, according to FrSIRT, a security research organization. The availability of exploit code typically raises the risk to users because it could aid miscreants in setting up attacks.

Microsoft is investigating the report of the new IE flaw, a representative of the company said in a statement late Wednesday. The software maker is not aware of attacks that use the reported flaw, she said. After the investigation, Microsoft will take the appropriate action to protect users, which could include a security update, she said.

The flaw is similar to security vulnerabilities Microsoft fixed as part of its monthly patch release last week and in July, the FrSIRT representative said. The problem exists because IE inappropriately lets Web sites instantiate other pieces of Microsoft software on the PC.

Full Story.

More in Tux Machines

Early Look at Ubuntu 17.04

  • Trying Out Unity 8 + Mir On Ubuntu 17.04
    With Ubuntu 17.04, Unity 7 with the X.Org Server remains the default desktop environment, but Unity 8 and Mir can be found on the default ISO and it's just a matter of logging out and into the experimental Unity 8 session. It's really easy to try out for those interested. For my tests today I was using an Intel Xeon box with a Radeon RX 470 graphics card atop Ubuntu 17.04's default Mesa packages and kernel. Overall it was an interesting experience and while a lot of bugs remain, the Unity 8 experience was much better than the last time I tried it a few months ago and is almost up to being usable for a daily Linux desktop.
  • The Ubuntu 17.04 Beta Is Now Available to Download
  • They’re Here: Ubuntu 17.04 Beta 2 Flavours Available to Download
  • Ubuntu Linux 17.04 'Zesty Zapus' Final Beta now available for download in multiple DE flavors
    When someone is interested in trying a Linux-based desktop operating system for the first time, they often choose Ubuntu. This is a smart choice, as it is easy to use, well supported, and quite beautiful. Even if you don't like the Unity desktop environment, there are several other DEs, or flavors, from which to choose -- GNOME, KDE, and Xfce to name a few. Today, the Final Beta of Ubuntu 17.04 'Zesty Zapus' becomes available for download. While it is never a good idea to run pre-release software on production machines, Canonical is claiming that it should be largely bug free at this point. In other words, if you understand the risks, it should be fairly safe. Home users aside, this is a good opportunity for administrators to conduct testing prior to the official release next month.

Games for GNU/Linux and CrossOver

San Francisco Open Source Voting System Project Continues On

At the February 15 Elections Commission meeting, the Elections Commission voted unanimously to ask the Mayor's Office to allocate $4 million towards initial development of the open source voting project for the 2018-19 fiscal year (from Aug. 2018 - July 2019). This would go towards initial development once the planning phase is complete. Read more

Detailed change log for deepin 15.4 RC

deepin is a Linux distribution devoted to providing beautiful, easy to use, safe and reliable system for global users. After public test of deepin 15.4 Beta, we have received a lot of suggestions and feedback, we adopted part of them and fixed a lot of problems. Read more