Microsoft Warns Of Security Issue With Internet Explorer 6 And 7

If you really needed a reason to switch from Internet Explorer to something else, here’s one more to add to your list. Microsoft released a Security Advisory warning of a zero day bug with Internet Explorer 6 and 7. The bug could allow an attacker to take control of a machine if a user visited a malicious Web site:

The vulnerability exists due to an invalid pointer reference being used within Internet Explorer. It is possible under certain conditions for the invalid pointer to be accessed after an object is deleted. In a specially-crafted attack, in attempting to access a freed object, Internet Explorer can be caused to allow remote code execution.

At this time, we are aware of targeted attacks attempting to use this vulnerability. We will continue to monitor the threat environment and update this advisory if this situation changes. On completion of this investigation, Microsoft will take the appropriate action to protect our customers, which may include providing a solution through our monthly security update release process, or an out-of-cycle security update, depending on customer needs.

If you want to protect yourself from this, run Internet Explorer 8. Or you can always switch to something else like Firefox.

Leave a Reply

%d bloggers like this: