14 DAY TRIAL // Internet Explorer has received critical security updates as part of this month’s Patch Tuesday cycle, so all users are now recommended to deploy the fixes as soon as possible.
Microsoft has described the bulletin as “critical,” as the patched flaws could allow an attack to take control of a vulnerable system and thus access users’ data.
The Microsoft Security Bulletin MS13-055 is rated “Critical” for Internet Explorer 6, Internet Explorer 7, Internet Explorer 8, Internet Explorer 9, and Internet Explorer 10 on Windows clients and “Moderate” for Internet Explorer 6, Internet Explorer 7, Internet Explorer 8, Internet Explorer 9, and Internet Explorer 10 on Windows servers.
According to a security advisory published today, the update is supposed to patch no less than 17 different vulnerabilities in the browser on the aforementioned platforms.
“The most severe vulnerabilities could allow remote code execution if a user views a specially crafted Web page using Internet Explorer,” Microsoft explained.
“An attacker who successfully exploited the most severe of these vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.”
At the same time, the Softies have also announced the availability of an update for Adobe Flash Player on Internet Explorer 10, specifically developed to address some of the reported vulnerabilities.
All patches are being delivered through the integrated Windows Update available on each of the aforementioned platforms, so no further action is required.
Microsoft is currently giving the final touches to Internet Explorer 11, the next version of its in-house browser that will be offered as part of the Windows 8.1 update. The new app packs several important improvements, including enhanced touch support and increased browsing speed in both Metro and desktop modes.