Microsoft has released an emergency security update to patch an actively exploited vulnerability in Internet Explorer. CVE-2018-8653 addresses a remote code execution vulnerability caused by the way the scripting engine handles objects in Internet Explorer. The exploit corrupts memory in such as way that an attacker can execute arbitrary code in the context of the current user. The attacker will have the same rights as the current user. If the user is logged in as an administrative rights user then the attacker can change, delete, install, create new accounts or view any data that they wish. Web-based attackers can create a website designed to trigger the exploit. I ran Windows Update and it installed the update in a few seconds.
The security update addresses the vulnerability by modifying how the scripting engine handles objects in memory.
https://portal.msrc.microsoft.com/en-us ... 3#ID0EMGAC
I don't use IE, but I think that Steam does.
Microsoft Releases Emergency Security Update for Actively Exploited Vulnerability
-
Executioner
- Life Member
- Posts: 10140
- Joined: Wed Nov 22, 2000 11:34 am
- Location: Woodland, CA USA
-
FlyingPenguin
- Flightless Bird
- Posts: 32781
- Joined: Wed Nov 22, 2000 11:13 am
- Location: Central Florida
- Contact:
Re: Microsoft Releases Emergency Security Update for Actively Exploited Vulnerability
Nope. Steam uses Chromium, the open source version of Chrome.
Christians warn us about the anti-christ for 2,000 years, and when he shows up, they buy a bible from him.
