Microsoft Releases Security Advisory 2794220, Confirms New IE Vulnerability (Updated)

Posted on Dec 31 2012 - 10:27am by Editorial Staff


A new Internet Explorer vulnerability confirmed by Microsoft saying its targeting attacks although both IE9 and IE 10 users are safe. The versions which are affected with this new security hole are IE6, IE7 and IE8. The tech giant over this has released Security Advisory 2794220 in order to provide customer awareness of a vulnerability affecting Internet Explorer versions 6, 7, and 8, says Dustin Childs, Microsoft Trustworthy Computing told TNW.

Here is how Microsoft explains:

The vulnerability is a remote code execution vulnerability that exists in the way that Internet Explorer accesses an object in memory that has been deleted or has not been properly allocated. The vulnerability may corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user within Internet Explorer. An attacker could host a specially crafted website that is designed to exploit this vulnerability through Internet Explorer and then convince a user to view the website.

Updated: Microsoft on Monday released a temporary one-click “Fix it” tool for old versions of Internet Explorer which will result in prevent the recently-discovered vulnerability in IE6, IE7, and IE8.

 (Image Source: Flickr @Featured Image / CC)

About the Author

Editorial Staff at I2Mag is a team of subject experts.