Zero-day IE flaw not in Microsoft Patch Tuesday

Vulnerability in Internet Explorer will not be patched in Microsoft's next Patch Tuesday.

Patch

Microsoft has not included Internet Explorer in its Patch Tuesday list, leaving a zero-day vulnerability without a fix.

The flaw could allow hackers to obtain information, or take any action that the user could take on an affected website.

The Redmond giant could be placing the browser at even greater risk, as the controversial hacking contest Pwn2Own is due to start next week.

Advertisement - Article continues below

Both Google and Mozilla have patched their browsers in time for the event, but Microsoft has opted not to.

Websense recently reported flaws in Internet Explorer were targeted as part of a hack on ad firm Unanimis that could have placed tens of thousands of people in danger.

Next week's Patch Tuesday will be a relatively light one, with just three bulletins, one of which is rated as critical while the other two are rated important.

"The critical update affects Windows XP, Vista and Windows 7 while Windows Sever 2003 and Server 2008 are not affected," said Amol Sarwate, manager at the Qualys vulnerability research lab.

"One of the important updates affects all Windows operating systems and we expect it to be for the MHTML Information Disclosure issue, which was left un-patched in last month's patch cycle."

Featured Resources

The case for a marketing content hub

Transform your digital marketing to deliver customer expectations

Download now

Fast, flexible and compliant e-signatures for global businesses

Be at the forefront of digital transformation with electronic signatures

Download now

Why CEOS should care about the move to SAP S/4HANA

And how they can accelerate business value

Download now

IT faces new security challenges in the wake of COVID-19

Beat the crisis by learning how to secure your network

Download now
Advertisement

Recommended

Visit/mobile/mobile-security/355889/parachute-introduces-superlock-feature
mobile security

Parachute's Superlock feature keeps your phone recording in an emergency

2 Jun 2020
Visit/security/encryption/355820/k2view-innovates-in-data-management-with-new-encryption-patent
encryption

K2View innovates in data management with new encryption patent

28 May 2020
Visit/software/video-conferencing/355410/zoom-50-adds-256-bit-encryption-and-ui-refresh
video conferencing

Zoom 5.0 adds 256-bit encryption to address security concerns

23 Apr 2020
Visit/security/hacking/355382/whatsapps-flaw-shoulder-surfing
hacking

WhatsApp flaw leaves users open to 'shoulder surfing' attacks

21 Apr 2020

Most Popular

Visit/operating-systems/ios/355935/apple-confirms-serious-bugs-in-ios-135
iOS

Apple confirms serious bugs in iOS 13.5

4 Jun 2020
Visit/mobile/5g/355911/the-uk-pivots-to-japan-for-5g-equipment
5G

The UK looks to Japan and South Korea for 5G equipment

4 Jun 2020
Visit/security/ransomware/355945/new-ransomware-uses-java-to-target-software-organisations
ransomware

Tycoon ransomware discovered using Java image files to target software firms

5 Jun 2020