Microsoft Internet Explorer Security Flaw, Zero-Day Vulnerability

Microsoft Internet Explorer Security Flaw, Zero-Day Vulnerability 

As many times onces again there is an Exploit and Vulnerability in Microsoft Internet Explorer, It’s time for their patch. Microsoft issued Emergency for the Patch for all supported versions of Internet Explorer browser, to fix this security flaw, So, Hackers won’t able to Hijack their victims computers and personal data, Microsoft Internet Explorer Security Flaw can be use to target any Computer.

The Zero-Day flaw (assigned CVE-2015-2502) is a Remote Code Execution vulnerability that could be exploited when a user visits a booby-trapped website or open a malicious email on an affected machine. Microsoft Internet Explorer Security Flaw handles objects in memory. If successfully exploited, hacker could gain the same user privileges as the current user. Therefore, users running administrator accounts on their machines as well as systems where IE is frequently used, like workstations or terminal servers, are particularly at the most risk from this vulnerability.

Microsoft officials wrote in an advisory posted Tuesday. An attacker could then:

  • Install malicious programs
  • View, Change, or Delete data
  • Create new accounts with full user rights
  • Many more…

What can this vulnerability could allow an hacker to take over the affected Windows machine. According to the company, the flaw has been publicly exploited. The zero-day flaw affects all supported versions of Microsoft’s Internet Explorer, from IE7 to IE 11 which runs on the recently released Windows 10. However, Microsoft’s new Edge browser is not affected.

The vulnerability gains Microsoft’s top severity of ‘Critical’ for all desktop versions of Windows. The company credited its security engineer Clement Lecigne to report the bug.
Users and administrators are advised to install the update as soon as possible. Windows users may also find some protection mechanism using the Enhanced Mitigation Experience Toolkit (EMET) that helps prevent vulnerabilities in software from being successfully exploited.

Affected Software

Operating System Component Maximum Security Impact Aggregate Severity Rating Updates Replaced*
Internet Explorer 7
Windows Vista Service Pack 2 Internet Explorer 7
(3087985)
Remote Code Execution Critical None
Windows Vista x64 Edition Service Pack 2 Internet Explorer 7
(3087985)
Remote Code Execution Critical None
Windows Server 2008 for 32-bit Systems Service Pack 2 Internet Explorer 7
(3087985)
Remote Code Execution Moderate None
Windows Server 2008 for x64-based Systems Service Pack 2 Internet Explorer 7
(3087985)
Remote Code Execution Moderate None
Windows Server 2008 for Itanium-based Systems Service Pack 2 Internet Explorer 7
(3087985)
Remote Code Execution Moderate None
Internet Explorer 8
Windows Vista Service Pack 2 Internet Explorer 8
(3087985)
Remote Code Execution Critical None
Windows Vista x64 Edition Service Pack 2 Internet Explorer 8
(3087985)
Remote Code Execution Critical None
Windows Server 2008 for 32-bit Systems Service Pack 2 Internet Explorer 8
(3087985)
Remote Code Execution Moderate None
Windows Server 2008 for x64-based Systems Service Pack 2 Internet Explorer 8
(3087985)
Remote Code Execution Moderate None
Windows 7 for 32-bit Systems Service Pack 1 Internet Explorer 8
(3087985)
Remote Code Execution Critical None
Windows 7 for x64-based Systems Service Pack 1 Internet Explorer 8
(3087985)
Remote Code Execution Critical None
Windows Server 2008 R2 for x64-based Systems Service Pack 1 Internet Explorer 8
(3087985)
Remote Code Execution Moderate None
Windows Server 2008 R2 for Itanium-based Systems Service Pack 1 Internet Explorer 8
(3087985)
Remote Code Execution Moderate None
Internet Explorer 9
Windows Vista Service Pack 2 Internet Explorer 9
(3087985)
Remote Code Execution Critical None
Windows Vista x64 Edition Service Pack 2 Internet Explorer 9
(3087985)
Remote Code Execution Critical None
Windows Server 2008 for 32-bit Systems Service Pack 2 Internet Explorer 9
(3087985)
Remote Code Execution Moderate None
Windows Server 2008 for x64-based Systems Service Pack 2 Internet Explorer 9
(3087985)
Remote Code Execution Moderate None
Windows 7 for 32-bit Systems Service Pack 1 Internet Explorer 9
(3087985)
Remote Code Execution Critical None
Windows 7 for x64-based Systems Service Pack 1 Internet Explorer 9
(3087985)
Remote Code Execution Critical None
Windows Server 2008 R2 for x64-based Systems Service Pack 1 Internet Explorer 9
(3087985)
Remote Code Execution Moderate None
Internet Explorer 10
Windows 7 for 32-bit Systems Service Pack 1 Internet Explorer 10
(3087985)
Remote Code Execution Critical None
Windows 7 for x64-based Systems Service Pack 1 Internet Explorer 10
(3087985)
Remote Code Execution Critical None
Windows Server 2008 R2 for x64-based Systems Service Pack 1 Internet Explorer 10
(3087985)
Remote Code Execution Moderate None
Windows 8 for 32-bit Systems Internet Explorer 10
(3087985)
Remote Code Execution Critical None
Windows 8 for x64-based Systems Internet Explorer 10
(3087985)
Remote Code Execution Critical None
Windows Server 2012 Internet Explorer 10
(3087985)
Remote Code Execution Moderate None
Windows RT Internet Explorer 10[1]
(3087985)
Remote Code Execution Critical None
Internet Explorer 11
Windows 7 for 32-bit Systems Service Pack 1 Internet Explorer 11
(3087985)
Remote Code Execution Critical None
Windows 7 for x64-based Systems Service Pack 1 Internet Explorer 11
(3087985)
Remote Code Execution Critical None
Windows Server 2008 R2 for x64-based Systems Service Pack 1 Internet Explorer 11
(3087985)
Remote Code Execution Moderate None
Windows 8.1 for 32-bit Systems Internet Explorer 11
(3087985)
Remote Code Execution Critical None
Windows 8.1 for x64-based Systems Internet Explorer 11
(3087985)
Remote Code Execution Critical None
Windows Server 2012 R2 Internet Explorer 11
(3087985)
Remote Code Execution Moderate None
Windows RT 8.1 Internet Explorer 11[1]
(3087985)
Remote Code Execution Critical None
Windows 10 for 32-bit Systems [2]
(3081444)
Internet Explorer 11 Remote Code Execution Critical 3081436 inMS15-079
Windows 10 for x64-based Systems [2]
(3081444)
Internet Explorer 11 Remote Code Execution Critical 3081436 inMS15-079

 

Back to top button
Close