Security News > 2015 > June > HP releases exploit code for IE zero-day that Microsoft won't patch (Help Net Security)

HP releases exploit code for IE zero-day that Microsoft won't patch (Help Net Security)

2015-06-23 12:49

Despite having paid $125,000 for information about an Address Space Layout Randomisation (ASLR) vulnerability affecting Internet Explorer, Microsoft has decided against patching it because they feel i...

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/KwG5ppn3E6s/secworld.php

#exploit #HP #IE #microsoft #patch #security #zeroday

Related news

Microsoft confirms IE bug squashed in Patch Tuesday was exploited zero-day (source)
Microsoft September 2024 Patch Tuesday fixes 4 zero-days, 79 flaws (source)
Microsoft fixes 4 exploited zero-days and a code defect that nixed earlier security fixes (source)
Patch Tuesday for September 2024: Microsoft Catches Four Zero-Day Vulnerabilities (source)
Microsoft October 2024 Patch Tuesday fixes 5 zero-days, 118 flaws (source)
Week in review: Microsoft fixes two exploited zero-days, SOC teams are losing trust in security tools (source)
Microsoft SharePoint RCE flaw exploits in the wild – you've had 3 months to patch (source)
Microsoft Is Disabling Default ActiveX Controls in Office 2024 to Improve Security (source)
Microsoft fixes Windows Smart App Control zero-day exploited since 2018 (source)
Adobe fixes Acrobat Reader zero-day with public PoC exploit (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Microsoft		708	787	4587	4647	3639	13660
HP		8950	139	728	500	670	2037

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.