Internet Explorer Vulnerability

Have you been keeping your patches up to date?

The most recent Patch Tuesday fixed a security issue in MSHTML, the platform that Internet Explorer ran on. Although Internet Explorer is no longer in use, the vulnerability remains as the MSHTML platform is still used in applications today.

This security issue enabled attackers to trick users into running malware that stole information from the computer. It’s been confirmed that the attackers were successful on at least one occasion before the vulnerability was patched.

Vulnerabilities like this are referred to as zero-day because it’s already been exploited by the time the vendor discovers it, so they have zero days to patch it.

Incidents like this demonstrate why it’s so important keep up to date with patches. They may seem useless, but they fix serious security issues like this.