25th February 2017 By Mark Wilson
Not content with publishing details of an unpatched Windows bug, Google has now gone public with a security vulnerability in both Microsoft Edge and Internet Explorer. Going under the description of “Type confusion in HandleColumnBreakOnColumnSpanningElement”, the bug has the potential to allow an attacker to execute malicious code.
The vulnerability has been assigned the code CVE-2017-0037, and details of the flaw have been published under the terms of Google’s Project Zero. Microsoft was notified about the problem 90 days ago, and as the company failed to patch it Google has made the problem public.
Powered by WPeMatico