Hand it to Redmond for quick service! The company has just issued a brand new update, out of cycle, in order to resolve a critical flaw in Internet Explore that was discovered last week.
The vulnerability affects all versions of Windows, including the retired Windows XP.
Microsoft confirmed in an updated statement that this patch is being delivered automatically to all installations that are running the affected IE versions via Windows Update, and users should deploy this in order to stay on the safe side:
“This update is fully tested and ready for release for all affected versions of the browser. The majority of customers have automatic updates enabled and will not need to take any action because protections will be downloaded and installed automatically. If you’re unsure if you have automatic updates, or you haven’t enabled Automatic Update, now is the time.”
Surprisingly, the software titan also issued this security update for the millions and millions of users that are still running Windows XP:
“We have made the decision to issue a security update for Windows XP users. Windows XP is no longer supported by Microsoft, and we continue to encourage customers to migrate to a modern operating system, such as Windows 7 or 8.1. Additionally, customers are encouraged to upgrade to the latest version of Internet Explorer, IE 11.”
The zero-day flaw required an attacker to get a user onto a website that hosted malware that exploited the flaw, and thereby allowing the cybercriminal to get the same privileges as the logged-in user.