Microsoft confirms zero day vulnerability that allows remote code execution to be present in all versions of Internet Explorer.
According to CNET, the vulnerability, which could allow remote code execution, is being used in limited and targeted attacks.
All the versions of IE are affected but versions 9,10, and 11 are reportedly the main targets.
A hacking group, APT [advanced persistent threat] is exploiting the vulnerability.
The group has been the first to have access to a select number of browser-based 0-day exploits, the report added.
Microsoft explained that luring visitors to a specially crafted web page could trigger the attack.
Microsoft reportedly said that the vulnerability might corrupt memory, allowing an attacker to execute arbitrary code in the context of the current user within Internet Explorer.
You’ve reached your limit of {{free_limit}} free articles this month.
Subscribe now for unlimited access.
Already subscribed? Log in
Subscribe to read the full story →
Smart Quarterly
₹900
3 Months
₹300/Month
Smart Essential
₹2,700
1 Year
₹225/Month
Super Saver
₹3,900
2 Years
₹162/Month
Renews automatically, cancel anytime
Here’s what’s included in our digital subscription plans
Exclusive premium stories online
Over 30 premium stories daily, handpicked by our editors
Complimentary Access to The New York Times
News, Games, Cooking, Audio, Wirecutter & The Athletic
Business Standard Epaper
Digital replica of our daily newspaper — with options to read, save, and share
Curated Newsletters
Insights on markets, finance, politics, tech, and more delivered to your inbox
Market Analysis & Investment Insights
In-depth market analysis & insights with access to The Smart Investor
Archives
Repository of articles and publications dating back to 1997
Ad-free Reading
Uninterrupted reading experience with no advertisements
Seamless Access Across All Devices
Access Business Standard across devices — mobile, tablet, or PC, via web or app