Microsoft Patches Remote Code Execution Hole for Internet Explorer

mask.of.sanity writes: Microsoft has released an out-of-band patch for Internet Explorer versions seven to 11 that closes a dangerous remote code execution flaw allowing attackers to commandeer machines. From their advisory: "An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Systems where Internet Explorer is used frequently, such as workstations or terminal servers, are at the most risk from this vulnerability." The attack could assist in watering hole and malvertising campaigns. The Windows 10 Edge browser is not impacted.

Yeah Well

[Greyfox]

Fortunately they'll be rid of it soon! Everyone will move to Windows 10 and their shiny new Edge browser, which I'm sure was created as a completely bug-free code-base with a fuck-ton of unit tests to prevent regressions!

Ow. I think I hurt myself trying to make it through that post with a straight face.