Microsoft has warned of yet another serious vulnerability in Internet Explorer (IE), this time affecting the way the browser renders locally stored content.The flaw could allow an attacker to steal user data through a specially crafted web page. The hole has yet to be patched, and Microsoft declined to give any further details.Microsoft confirmed in a Security Advisory that the vulnerability is present in all versions of IE, but said that users running Protected Mode in IE7 and IE8 on Windows 7 or Windows Vista are not at risk.The company considers only Windows XP machines and systems with Protected Mode disabled to be at risk.Microsoft is investigating the flaw and is likely to release a patch next Tuesday as part of its monthly security update.The warning is the latest in a string of bad publicity for Microsoft's browser. A zero-day flaw surfaced in January which sent Microsoft scrambling to issue an update, and led some security experts to recommend that users dump the browser entirely.More recently, security firms have urged consumers and enterprises to swap IE6 for a more recent version of the software or a competing browser.
Copyright ©v3.co.uk
A confirmation email has been sent to your email address - SUPPLIED GOES EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @itnews.com.au to your white-listed senders.