Slashdot Mirror


Critical Internet Explorer 11 Vulnerability Identified After Hacking Team Breach

An anonymous reader writes: After analyzing the leaked data from last week's attack on Hacking Team, Vectra researchers discovered a previously unknown high severity vulnerability in Internet Explorer 11, which impacts the browser on both Windows 7 and Windows 8.1. The vulnerability is an exploitable use-after-free (UAF) vulnerability that occurs within a custom heap in JSCRIPT9. Since it exists within a custom heap, it can allow an attacker to bypass protections found in standard memory. Microsoft has published a patch for this vulnerability, and also patched another one pulled from the Hacking Team files by different security researchers.

2 of 58 comments (clear)

  1. Anonymous coward by Anonymous Coward · · Score: -1, Troll

    My grandmother said to me don't ever join the intelligence community. "They are liars and will screw you over if they have the chance."

    Almost every head of an intelligence agency has lied in front of congress. And everyone has gotten away with it.

    What this has to do with this story?
    They had the chance to strengthen your and my security. They didn't. They prefer to not to.

  2. what's your point? by frovingslosh · · Score: -1, Troll

    The only reason for using IE is that you like all of the vulnerabilities.

    --
    I'm an American. I love this country and the freedoms that we used to have.