Living on the “Edge”: 25 Security Flaws Found in MS Internet Explorer
Living on the “Edge”: 25 Security Flaws Found in MS Internet Explorer
Posted: 11 Nov 2015
Patch now, security experts recommend Windows users
Internet Explorer is no longer the default Windows browser, and with Windows 10, Microsoft not only made this huge change to its operating system but it also took the first step towards introducing a universal browser working on PCs and smartphones alike.
Microsoft Edge is the name of the new kid on the block, but Internet Explorer continues to be available in Windows 10 as a backup just in case your company apps or a specific service isn’t working the way it should in the new operating system.
But this doesn’t change anything in terms of security, and far as Internet Explorer is concerned, the old browser continues to be one of the most attacked apps currently available.
Just glad I dumped IE11
So happy with Edge knowing it is not going to freeze or crash
Also funny no one has tried to do to Edge what they are doing to IE11
Computer Type: Laptop System Manufacturer/Model Number: Samsung Galaxy Book 14 Pro LTE Model NP345XLA OS: Windows 11 Home (x64) Version 21H1 (build 19043.1202) Mouse: Precision Touchpad Case: Silver Internet Speed: Fast Browser: New Microsoft Dev Edge Insider with separate Bing Antivirus: Windows Defender/Firewall Other Info: OFFICE 365
See my Signature
Just glad I dumped IE11
So happy with Edge knowing it is not going to freeze or crash
Also funny no one has tried to do to Edge what they are doing to IE11
Give them time, they will! Not to be negative but Edge is a big target and it is a challenge to break.
I myself think Microsoft are going to do all they can so that Edge is more protected, as it is their baby now and IE 11 is as far as thing go an adult or elderly and nearing the end of its life span.
IE has been going since I think windows 95 that is when I first came across it.
Computer Type: Laptop System Manufacturer/Model Number: Samsung Galaxy Book 14 Pro LTE Model NP345XLA OS: Windows 11 Home (x64) Version 21H1 (build 19043.1202) Mouse: Precision Touchpad Case: Silver Internet Speed: Fast Browser: New Microsoft Dev Edge Insider with separate Bing Antivirus: Windows Defender/Firewall Other Info: OFFICE 365
See my Signature
Cumulative Security Update for Microsoft Edge (3104519)
Published: November 10, 2015 Version: 1.0
Executive Summary
This security update resolves vulnerabilities in Microsoft Edge. The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Microsoft Edge. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.
This security update is rated Critical for Microsoft Edge on Windows 10. For more information, see the Affected Software section.
The update addresses the vulnerabilities by modifying how Microsoft Edge handles objects in memory and by helping to ensure that Microsoft Edge properly implements the ASLR security feature.
For more information about the vulnerabilities, see the Vulnerability Information section.
For more information about this update, see Microsoft Knowledge Base Article 3104519.
Absolutely no browser is perfect no matter how much you are a fan and swear by it
Computer Type: PC/Desktop System Manufacturer/Model Number: ۞ΞЖ†ԘΜΞ۞ OS: Win11 Pro, Win10 Pro N, Win10 Home, Windows 8.1 Pro, Ubuntu CPU: Intel Core i9 9900K Motherboard: ASUS ROG Maximus X Hero Memory: 32 GB Quad Kit, G.Skill Trident Z RGB Series schwarz, DDR4-3866, 18-19-19-39-2T Graphics Card: ASUS GeForce RTX 3090 ROG Strix O24G, 24576 MB GDDR6X Sound Card: (1) HD Webcam C270 (2) NVIDIA High Definition Audio (3) Realtek High Definition Audio Monitor(s) Displays: BenQ BL2711U(4K) and a hp 27vx(1080p) Keyboard: Trust GTX THURA Mouse: Trust GTX 148 PSU: Corsair HX1000i High Performance ATX Power Supply 80+ Platinum Case: Phanteks Enthoo Pro TG Cooling: Thermaltake Floe Riing RGB TT Premium-Edition 360mm and 2x120 Phantek& Halo front, and 1x140 Phante Hard Drives: C: Samsung 960 EVO NVMe M.2 SSD
E: & O: Libraries & OneDrive-> Samsung 850 EVO 1TB
D: Hyper-V VM's -> Samsung PM951 Client M.2 512Gb SSD
G: System Images -> Samsung 860 Pro 2TB Internet Speed: 25+/5+ (+usually faster) Browser: Edge; Chrome Antivirus: Windows Defender of course & Malwarebytes Anti-Exploit as an added layer between browser & OS Other Info: Router: FRITZ!Box 7590 AX V2
Sound system: SHARP HT-SBW460 Dolby Atmos Soundbar
Webcam: Logitech BRIO ULTRA HD PRO WEBCAM 4K webcam with HDR
Computer Type: PC/Desktop System Manufacturer/Model Number: Hyper-V Virtual Machine OS: Windows 10 Insider Build - Fast Ring CPU: 8 Virtual Processors(8 threads) Motherboard: N/A Memory: 8192 MB - Dynamic Memory turned on Screen Resolution: Being a VM, it depends what size I need at a given moment;) Hard Drives: VM is on a separate internal SSD(Samsung 850 EVO SSD) Browser: Edge, chrome Antivirus: Defender Other Info: Secure Boot enabled,
All Integration Services are turned on,
Enhanced Session Mode selected
This security update resolves vulnerabilities in Microsoft Edge. The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Microsoft Edge. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.
Absolutely no browser is perfect no matter how much you are a fan and swear by it
So that's what RCE stands for, 'Remote Code Execution'. I thought 'Really Cool Exploit' sounded better.
Computer Type: PC/Desktop System Manufacturer/Model Number: ۞ΞЖ†ԘΜΞ۞ OS: Win11 Pro, Win10 Pro N, Win10 Home, Windows 8.1 Pro, Ubuntu CPU: Intel Core i9 9900K Motherboard: ASUS ROG Maximus X Hero Memory: 32 GB Quad Kit, G.Skill Trident Z RGB Series schwarz, DDR4-3866, 18-19-19-39-2T Graphics Card: ASUS GeForce RTX 3090 ROG Strix O24G, 24576 MB GDDR6X Sound Card: (1) HD Webcam C270 (2) NVIDIA High Definition Audio (3) Realtek High Definition Audio Monitor(s) Displays: BenQ BL2711U(4K) and a hp 27vx(1080p) Keyboard: Trust GTX THURA Mouse: Trust GTX 148 PSU: Corsair HX1000i High Performance ATX Power Supply 80+ Platinum Case: Phanteks Enthoo Pro TG Cooling: Thermaltake Floe Riing RGB TT Premium-Edition 360mm and 2x120 Phantek& Halo front, and 1x140 Phante Hard Drives: C: Samsung 960 EVO NVMe M.2 SSD
E: & O: Libraries & OneDrive-> Samsung 850 EVO 1TB
D: Hyper-V VM's -> Samsung PM951 Client M.2 512Gb SSD
G: System Images -> Samsung 860 Pro 2TB Internet Speed: 25+/5+ (+usually faster) Browser: Edge; Chrome Antivirus: Windows Defender of course & Malwarebytes Anti-Exploit as an added layer between browser & OS Other Info: Router: FRITZ!Box 7590 AX V2
Sound system: SHARP HT-SBW460 Dolby Atmos Soundbar
Webcam: Logitech BRIO ULTRA HD PRO WEBCAM 4K webcam with HDR
Computer Type: PC/Desktop System Manufacturer/Model Number: Hyper-V Virtual Machine OS: Windows 10 Insider Build - Fast Ring CPU: 8 Virtual Processors(8 threads) Motherboard: N/A Memory: 8192 MB - Dynamic Memory turned on Screen Resolution: Being a VM, it depends what size I need at a given moment;) Hard Drives: VM is on a separate internal SSD(Samsung 850 EVO SSD) Browser: Edge, chrome Antivirus: Defender Other Info: Secure Boot enabled,
All Integration Services are turned on,
Enhanced Session Mode selected
I've actually gone back to using IE over Edge. Simple extension support isn't there, tabbed previews in the taskbar kind of kill the experience for me, and also IE has less window chrome than Edge. It's kind of disappointing to say the least. Edge was supposed to be the saving grace of Microsoft's browser front and all they've done is delay needed features, lacks certain advanced features, and just overall has been buggy to use.
Hi there
I believe this also appeared on Google as well but here's a very recent (2 days ago approx) note from the BBC about security problem found in Edge and IE11 browsers.
Bad bug found in Microsoft browsing code - BBC News
I haven't had...