(Ping! Zine Web Tech Magazine) – Tech giant Microsoft has moved to patch up a vulnerability occurring in older versions of its Internet Explorer web browser. On Wednesday, the company made a “Fix it” readily available and noted it would further address the issue by using a standard Windows update.
Meanwhile, Microsoft emphasized that the matter had “affected a small number of customers,” but noted more could be at risk in the future.
The company originally issued a security advisory regarding the threat on Monday, referring to it as a “remote code execution vulnerability.” Versions of Internet Explorer affected included 8 and 9.
“The vulnerability may corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user within Internet Explorer. An attacker could host a specially crafted website that is designed to exploit this vulnerability through Internet Explorer and then convince a user to view the website,” warned Microsoft.
According to a BBC report, a trojan virus known as Poison Ivy was being used to infiltrate user systems due to the security gap. Eric Romang, working for ZATAZ.com initially discussed the issue, noting the attackers were also behind a recent 0 day exploit taking advantage of Java.
Microsoft has routinely had to address security vulnerabilities, providing security fixes via its website. Earlier this year, the company unveiled an update disabling Windows sidebar and gadgets due to an unrelated flaw.