Still using Internet Explorer? Hackers could take over your PC without this patch

Microsoft issues emergency fix for IE as it tries to shift customers onto Edge browser

Internet Explorer

As Microsoft customers debate over whether to upgrade to Windows 10 and its brand new browser, Edge, the company has been forced to patch for a critical Internet Explorer bug.

The emergency fix was published outside of Redmond's usual Patch Tuesday monthly schedule, and seeks to fix a zero-day vulnerability affecting IE7 through to IE11 that allows hackers to remotely control PCs.

Dubbed CVE-2015-2502, the exploit would enable cyber criminals to perform remote code execution issuing commands for a PC remotely if a user is directed to malicious websites hosting specially crafted webpages.

Lane Thames, software development engineer and security researcher at cybersecurity firm Tripwire, said: "This memory corruption vulnerability exists because IE does not properly manage certain objects in memory."

All a user needs do is visit the malicious webpages, with no further action required to trigger the bug.

Security blogger Graham Cluley explained in a Tripwire blog post: "Once a computer has been successfully compromised, the attacker would have the same user rights as the current user meaning that if you are logged in with admin rights, the hacker could take complete control of your PC."

The vulnerability is rated critical for Windows non-Server operating systems, but only moderate for Windows Server platforms including Server 2008, 2008 R2, Server 2012 and 2012 R2.

While Windows 10 browser Edge is not affected by the bug, it is rated as critical for users of IE11 on the 32-bit and 64-bit versions of Windows 10.

Featured Resources

B2B under quarantine

Key B2C e-commerce features B2B need to adopt to survive

Download now

The top three IT pains of the new reality and how to solve them

Driving more resiliency with unified operations and service management

Download now

The five essentials from your endpoint security partner

Empower your MSP business to operate efficiently

Download now

How fashion retailers are redesigning their digital future

Fashion retail guide

Download now

Recommended

How to fix a stuck Windows 10 update
operating systems

How to fix a stuck Windows 10 update

8 Jul 2021
16 ways to speed up your laptop
Laptops

16 ways to speed up your laptop

5 Jul 2021
17 Windows 10 problems - and how to fix them
operating systems

17 Windows 10 problems - and how to fix them

25 Jun 2021
How to get help in Windows 10
operating systems

How to get help in Windows 10

18 Jun 2021

Most Popular

RMIT to be first Australian university to implement AWS supercomputing facility
high-performance computing (HPC)

RMIT to be first Australian university to implement AWS supercomputing facility

28 Jul 2021
Samsung Galaxy S21 5G review: A rose-tinted experience
Mobile Phones

Samsung Galaxy S21 5G review: A rose-tinted experience

14 Jul 2021
Zyxel USG Flex 200 review: A timely and effective solution
Security

Zyxel USG Flex 200 review: A timely and effective solution

28 Jul 2021