IE Bug Gives Hackers Control Over Your PC, Microsoft Offers Band-Aid
Microsoft had previously issued browser updates to improve memory management and security, but researchers discovered that the updated systems are not always used when older parts of Windows are used. In a statement, the company said it was "investigating" the bug, and recommended that customers use the Enhanced Mitigation Experience Toolkit to protect themselves until a permanent fix is installed.
"As vulnerabilities go, this kind is the most serious as it allows remote execution of code," said Rik Ferguson, a senior security analyst at Trend Micro. "This means the attacker can run programs, such as malware, directly on the victim's computer." Ferguson added that the recently discovered bug was "highly reminiscent" of a vulnerability that, two years ago, prompted several national governments to warn consumers against using the browser.