Microsoft issues emergency patch for all IE versions

Microsoft has released an emergency patch for all versions of Internet Explorer, due to a critical vulnerability that's reportedly under active exploit. The CVE-2015-2502 vulnerability is described as a "Memory Corruption Vulnerability," and can allow for remote code execution under the active user's credentials, leading to potential exfiltration of user data. If the user has administrator permissions, an attacker can gain complete control over the system.

According to the company, all a user has to do is visit a specially-crafted website for the exploit to be triggered. All Internet Explorer versions from 7 to 11 are affected, and the vulnerability is rated ...

Read more...