Major Security Flaw Hits Internet Explorer
Windows XP users most at risk
By Rob Quinn, Newser Staff
Posted Apr 28, 2014 1:00 AM CDT
Updated Apr 28, 2014 7:42 AM CDT
Google's Chrome browser shortcut is shown next to Microsoft's Internet Explorer browser shortcut during a news conference at Google Inc. headquarters.   (AP Photo/Paul Sakuma)

(Newser) – A new security headache for the estimated 56% of Web users who use Internet Explorer: A major security flaw has surfaced in some versions of the browser, leaving users open to a "remote code execution vulnerability," which "means a bad guy can make a target computer run software after a successful attack," Recode explains. Microsoft says most attacks occur when a user clicks on a link that leads to a malicious website and the bug affects every Explorer version from 6 to 11.

Microsoft plans to roll out a security update for current versions of Windows, but it looks like Windows XP users are on their own, the Wall Street Journal reports. Microsoft ended support for the outdated operating system earlier this month, and although it still runs on around 300 million machines, it's not clear whether Microsoft will make an exception and issue a security patch for the latest flaw. "XP users are not safe anymore and this is the first vulnerability that will be not patched for their system," a Symantec researcher warns.

More From Newser
My Take on This Story
To report an error on this story,
notify our editors.
Major Security Flaw Hits Internet Explorer is...
10%
3%
11%
2%
65%
11%
Show results without voting
You Might Like
Comments
Showing 3 of 48 comments
iq145
May 5, 2014 8:41 PM CDT
Heartbleed seems to have succeeded: http://www.newser.com/story/186379/symantec-exec-antivirus-is-dead.html
TwoSheds
Apr 30, 2014 2:12 AM CDT
They can't install malware when your only software source is the Debian repository.
Rob
Apr 29, 2014 6:11 PM CDT
This is a "Flash" issue. Firefox, Chrome and Opera all have the same "flaw". Amazes me how the press only mentions IE. In later versions of IE you can enable Enhanced Protection Mode to take care of it.