HP drops the hammer on unpatched IE11 vulnerability

HP drops the hammer on unpatched IE11 vulnerability

Microsoft refuses to fix a known flaw in Internet Explorer 11, and so HP is raising the stakes by publishing proof-of-concept code that could be used to attack to weakness.

Last year HP’s highly regarded Zero Day Initiative group found a bug in Internet Explorer 11’s Address Space Layout Randomization (ASLR) routine and reported it to Microsoft.

HP went public with the flaw in February, when it announced that HP researchers Brian Gorenc, AbdulAziz Hariri, and Simon Zuckerbraun had received a $125,000 bug bounty from Microsoft. According to HP:

To read this article in full or to leave a comment, please click here

By | 2015-06-23T09:27:00+00:00 June 23rd, 2015|Business Insights From EWT|Comments Off on HP drops the hammer on unpatched IE11 vulnerability