Saturday February 25, 2017

Google Details Unpatched Internet Explorer and Microsoft Edge Vulnerability

The Patch Tuesday delay is probably biting Microsoft in the arse yet again. This time, Google has revealed browser bugs that affect both 32-bit and 64-bit versions of IE and Edge: an attacker may execute malicious code. The good news is that none of you actually use these browsers, rightآ…

News Image

Google has now gone public with a security vulnerability in both Microsoft Edge and Internet Explorer. Going under the description of "Type confusion in HandleColumnBreakOnColumnSpanningElement", the bug has the potential to allow an attacker to execute malicious code. The vulnerability has been assigned the code CVE-2017-0037, and details of the flaw have been published under the terms of Google's Project Zero. Microsoft was notified about the problem 90 days ago, and as the company failed to patch it Google has made the problem public.