Language Selection

English French German Italian Portuguese Spanish

M$ investigates potential new IE flaw

Filed under
Microsoft

Microsoft is investigating a report of a new, unpatched flaw in Internet Explorer that could expose users of the ubiquitous Web browser to attacks.

An attacker could craft a malicious Web site that takes advantage of the flaw and gain control over the PCs that visit the Web site or install malicious software on those systems, a representative of the French Security Incident Response Team (FrSIRT) said in an e-mail interview Wednesday. FrSIRT rates the issue "critical," its most serious classification.

Exploit code for the flaw is available on the Internet, according to FrSIRT, a security research organization. The availability of exploit code typically raises the risk to users because it could aid miscreants in setting up attacks.

Microsoft is investigating the report of the new IE flaw, a representative of the company said in a statement late Wednesday. The software maker is not aware of attacks that use the reported flaw, she said. After the investigation, Microsoft will take the appropriate action to protect users, which could include a security update, she said.

The flaw is similar to security vulnerabilities Microsoft fixed as part of its monthly patch release last week and in July, the FrSIRT representative said. The problem exists because IE inappropriately lets Web sites instantiate other pieces of Microsoft software on the PC.

Full Story.

More in Tux Machines

Here Is What's New In Fedora 28

For those who don't know about this Linux distro, Fedora is one of those Linux distributions that comes released with cutting-edge software rather than staying on the same boat with other distributions that prefers stability. Fedora comes in three flavors: Workstation, Server, and Atomic. I'll be reviewing Fedora Workstation; used by many developers and users as their general purpose computing platform. Read
more

Stable kernels 4.16.11, 4.14.43 and 4.9.102

today's leftovers

Software: Grafana, Heaptrack, Vim

  • Grafana – An Open Source Software for Analytics and Monitoring
    Grafana is an open source, feature rich, powerful, elegant and highly-extensible analytics and monitoring software that runs on Linux, Windows and MacOS. It is a de facto software for data analytics, being used at Stack Overflow, eBay, PayPal, Uber and Digital Ocean – just to mention but a few. It supports 30+ open source as well as commercial databases/data sources including MySQL, PostgreSQL, Graphite, Elasticsearch, OpenTSDB, Prometheus and InfluxDB. It allows you to dig deeply into large volumes of real-time, operational data; visualize, query, set alerts and get insights from your metrics from differen
  • Heaptrack v1.1.0 release
    Better memory profiling on Linux After more than a year of work, I’m pleased to release another version of heaptrack, the Linux memory profiler! The new version 1.1.0 comes with some new features, significant performance improvements and – most importantly – much improved stability and correctness. If you have tried version v1.0 in the past and encountered problems, update to the new v1.1 and try again!
  • Ten Years of Vim
     

    The philosophy behind Vim takes a while to sink in: While other editors focus on writing as the central part of working with text, Vim thinks it's editing.

     

    You see, most of the time I don't spend writing new text; instead, I edit existing text.

  •