Security News > 2015 > June > HP releases exploit code for IE zero-day that Microsoft won't patch (Help Net Security)

HP releases exploit code for IE zero-day that Microsoft won't patch (Help Net Security)

2015-06-23 12:49

Despite having paid $125,000 for information about an Address Space Layout Randomisation (ASLR) vulnerability affecting Internet Explorer, Microsoft has decided against patching it because they feel i...

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/KwG5ppn3E6s/secworld.php

#exploit #HP #IE #microsoft #patch #security #zeroday

Related news

Microsoft October 2024 Patch Tuesday fixes 5 zero-days, 118 flaws (source)
Week in review: Microsoft fixes two exploited zero-days, SOC teams are losing trust in security tools (source)
Microsoft SharePoint RCE flaw exploits in the wild – you've had 3 months to patch (source)
Microsoft November 2024 Patch Tuesday fixes 4 zero-days, 91 flaws (source)
Microsoft November 2024 Patch Tuesday fixes 4 zero-days, 89 flaws (source)
Microsoft overhauls security for publishing Edge extensions (source)
Google Adds New Pixel Security Features to Block 2G Exploits and Baseband Attacks (source)
Qualcomm Urges OEMs to Patch Critical DSP and WLAN Flaws Amid Active Exploits (source)
Microsoft patches two zero-days exploited in the wild (CVE-2024-43573, CVE-2024-43572) (source)
Microsoft Issues Security Update Fixing 118 Flaws, Two Actively Exploited in the Wild (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Microsoft		480	75	2308	5127	264	7774
HP		6796	19	249	488	237	993

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.