Microsoft Internet Explorer Security Flaw, Zero-Day Vulnerability
As many times onces again there is an Exploit and Vulnerability in Microsoft Internet Explorer, It’s time for their patch. Microsoft issued Emergency for the Patch for all supported versions of Internet Explorer browser, to fix this security flaw, So, Hackers won’t able to Hijack their victims computers and personal data, Microsoft Internet Explorer Security Flaw can be use to target any Computer.
The Zero-Day flaw (assigned CVE-2015-2502) is a Remote Code Execution vulnerability that could be exploited when a user visits a booby-trapped website or open a malicious email on an affected machine. Microsoft Internet Explorer Security Flaw handles objects in memory. If successfully exploited, hacker could gain the same user privileges as the current user. Therefore, users running administrator accounts on their machines as well as systems where IE is frequently used, like workstations or terminal servers, are particularly at the most risk from this vulnerability.
Microsoft officials wrote in an advisory posted Tuesday. An attacker could then:
- Install malicious programs
- View, Change, or Delete data
- Create new accounts with full user rights
- Many more…
What can this vulnerability could allow an hacker to take over the affected Windows machine. According to the company, the flaw has been publicly exploited. The zero-day flaw affects all supported versions of Microsoft’s Internet Explorer, from IE7 to IE 11 which runs on the recently released Windows 10. However, Microsoft’s new Edge browser is not affected.
The vulnerability gains Microsoft’s top severity of ‘Critical’ for all desktop versions of Windows. The company credited its security engineer Clement Lecigne to report the bug.
Users and administrators are advised to install the update as soon as possible. Windows users may also find some protection mechanism using the Enhanced Mitigation Experience Toolkit (EMET) that helps prevent vulnerabilities in software from being successfully exploited.
Affected Software
| Operating System | Component | Maximum Security Impact | Aggregate Severity Rating | Updates Replaced* |
| Internet Explorer 7 | ||||
| Windows Vista Service Pack 2 | Internet Explorer 7 (3087985) |
Remote Code Execution | Critical | None |
| Windows Vista x64 Edition Service Pack 2 | Internet Explorer 7 (3087985) |
Remote Code Execution | Critical | None |
| Windows Server 2008 for 32-bit Systems Service Pack 2 | Internet Explorer 7 (3087985) |
Remote Code Execution | Moderate | None |
| Windows Server 2008 for x64-based Systems Service Pack 2 | Internet Explorer 7 (3087985) |
Remote Code Execution | Moderate | None |
| Windows Server 2008 for Itanium-based Systems Service Pack 2 | Internet Explorer 7 (3087985) |
Remote Code Execution | Moderate | None |
| Internet Explorer 8 | ||||
| Windows Vista Service Pack 2 | Internet Explorer 8 (3087985) |
Remote Code Execution | Critical | None |
| Windows Vista x64 Edition Service Pack 2 | Internet Explorer 8 (3087985) |
Remote Code Execution | Critical | None |
| Windows Server 2008 for 32-bit Systems Service Pack 2 | Internet Explorer 8 (3087985) |
Remote Code Execution | Moderate | None |
| Windows Server 2008 for x64-based Systems Service Pack 2 | Internet Explorer 8 (3087985) |
Remote Code Execution | Moderate | None |
| Windows 7 for 32-bit Systems Service Pack 1 | Internet Explorer 8 (3087985) |
Remote Code Execution | Critical | None |
| Windows 7 for x64-based Systems Service Pack 1 | Internet Explorer 8 (3087985) |
Remote Code Execution | Critical | None |
| Windows Server 2008 R2 for x64-based Systems Service Pack 1 | Internet Explorer 8 (3087985) |
Remote Code Execution | Moderate | None |
| Windows Server 2008 R2 for Itanium-based Systems Service Pack 1 | Internet Explorer 8 (3087985) |
Remote Code Execution | Moderate | None |
| Internet Explorer 9 | ||||
| Windows Vista Service Pack 2 | Internet Explorer 9 (3087985) |
Remote Code Execution | Critical | None |
| Windows Vista x64 Edition Service Pack 2 | Internet Explorer 9 (3087985) |
Remote Code Execution | Critical | None |
| Windows Server 2008 for 32-bit Systems Service Pack 2 | Internet Explorer 9 (3087985) |
Remote Code Execution | Moderate | None |
| Windows Server 2008 for x64-based Systems Service Pack 2 | Internet Explorer 9 (3087985) |
Remote Code Execution | Moderate | None |
| Windows 7 for 32-bit Systems Service Pack 1 | Internet Explorer 9 (3087985) |
Remote Code Execution | Critical | None |
| Windows 7 for x64-based Systems Service Pack 1 | Internet Explorer 9 (3087985) |
Remote Code Execution | Critical | None |
| Windows Server 2008 R2 for x64-based Systems Service Pack 1 | Internet Explorer 9 (3087985) |
Remote Code Execution | Moderate | None |
| Internet Explorer 10 | ||||
| Windows 7 for 32-bit Systems Service Pack 1 | Internet Explorer 10 (3087985) |
Remote Code Execution | Critical | None |
| Windows 7 for x64-based Systems Service Pack 1 | Internet Explorer 10 (3087985) |
Remote Code Execution | Critical | None |
| Windows Server 2008 R2 for x64-based Systems Service Pack 1 | Internet Explorer 10 (3087985) |
Remote Code Execution | Moderate | None |
| Windows 8 for 32-bit Systems | Internet Explorer 10 (3087985) |
Remote Code Execution | Critical | None |
| Windows 8 for x64-based Systems | Internet Explorer 10 (3087985) |
Remote Code Execution | Critical | None |
| Windows Server 2012 | Internet Explorer 10 (3087985) |
Remote Code Execution | Moderate | None |
| Windows RT | Internet Explorer 10[1] (3087985) |
Remote Code Execution | Critical | None |
| Internet Explorer 11 | ||||
| Windows 7 for 32-bit Systems Service Pack 1 | Internet Explorer 11 (3087985) |
Remote Code Execution | Critical | None |
| Windows 7 for x64-based Systems Service Pack 1 | Internet Explorer 11 (3087985) |
Remote Code Execution | Critical | None |
| Windows Server 2008 R2 for x64-based Systems Service Pack 1 | Internet Explorer 11 (3087985) |
Remote Code Execution | Moderate | None |
| Windows 8.1 for 32-bit Systems | Internet Explorer 11 (3087985) |
Remote Code Execution | Critical | None |
| Windows 8.1 for x64-based Systems | Internet Explorer 11 (3087985) |
Remote Code Execution | Critical | None |
| Windows Server 2012 R2 | Internet Explorer 11 (3087985) |
Remote Code Execution | Moderate | None |
| Windows RT 8.1 | Internet Explorer 11[1] (3087985) |
Remote Code Execution | Critical | None |
| Windows 10 for 32-bit Systems [2] (3081444) |
Internet Explorer 11 | Remote Code Execution | Critical | 3081436 inMS15-079 |
| Windows 10 for x64-based Systems [2] (3081444) |
Internet Explorer 11 | Remote Code Execution | Critical | 3081436 inMS15-079 |