Microsoft releases emergency patch for IE
Microsoft releases patch to fix critical exploit in Internet Explorer, vulnerability already being used to steal data
Microsoft has released an emergency patch to fix a security vulnerability in Internet Explorer.
The patch will fix a problem that allows remote code execution that effects IE7 and several other versions of the browser, including versions 5, 6 and 8.
Hackers have already been found using the vulnerability to download code to victim’s machines, which allows the code to be installed just by visiting a site, with no action required by the victim. The hack is primarily being used to steal video game passwords at present, although Microsoft warns that it could be used for to steal other information.
The patch is available at the Microsoft Technet site, and the company is urging all Internet Explorers to install it.
The patch release marks the first time that Microsoft has released a fix outside of its usual update cycle in eighteen months, and is rated as a ‘critical’ issue by Microsoft.