Microsoft looks into zero-day Internet Explorer flaw

Share this article:
Microsoft is investigating reports of a new vulnerability in Internet Explorer that could enable an attacker to run arbitrary code on a victim's machine if he or she is persuaded to visit a malicious website and press the "F1" key in response to a pop-up dialog box. The flaw, however, does not affect newer versions of the operating system: Windows 7, Vista and Server 2008, according to a post Sunday on the Microsoft Security Response Center blog. The bug, which involves the use of the VBScript language and Windows Help files, was revealed Friday by security firm iSEC. There have been no known attacks, Microsoft said. -- DK
Share this article:

Sign up to our newsletters

More in News

Community Health Systems faces lawsuit related to data breach

The suit claims the hospital operator failed to meet security standards to protect the personal information belonging to patients.

Norwegian oil companies targeted in string of attacks

More than 300 companies are being warned to check their systems after at least 50 oil companies confirmed that their systems were attacked.

Possible payment card breach at Dairy Queen stores

Several financial institutions are reporting payment card fraud activity on credit and debit cards used at various Dairy Queen stores around the country, according to Brian Krebs.