Microsoft says it will fix an Internet Explorer security bug under active attack

Zack Whittaker

Updated January 18, 2020 at 10:35 AM

The logo of Microsoft Corp.'s Internet Explorer 9 is displayed on a computer monitor in Washington, D.C., U.S., on Tuesday, March 15, 2011. Microsoft released a speedier version of its Internet Explorer browser that adds privacy controls and video features, a bid to regain market share lost to Firefox and Google Inc.'s Chrome. Photographer: Andrew Harrer/Bloomberg via Getty Images

Microsoft has confirmed a security flaw affecting Internet Explorer is currently being used by hackers, but that it has no immediate plans to fix.

In a late-evening tweet, US-CERT, the division of Homeland Security tasked with reporting on major security flaws, tweeted a link to a security advisory detailing the bug, describing it as "being exploited in the wild."

Microsoft said all supported versions of Windows are affected by the flaw, including Windows 7, which after this week no longer receives security updates.

The vulnerability was found in how Internet Explorer handles memory. An attacker could use the flaw to remotely run malicious code on an affected computer, such as tricking a user into opening a malicious website from a search query or a link sent by email.

It's believed to be a similar vulnerability as one disclosed by Mozilla, the maker of the Firefox browser, earlier this week. Both Microsoft and Mozilla credited Qihoo 360, a China-based security research team, with finding flaws under active attack. Earlier in the week, Qihoo 360 reportedly deleted a tweet referencing a similar flaw in Internet Explorer.

Neither Qihoo, Microsoft, nor Mozilla said how attackers were exploiting the bug, who the attackers were, or who was being targeted. The U.S. government's cybersecurity advisory unit also issued a warning about current exploitation.

Microsoft told TechCrunch that it was was "aware of limited targeted attacks" and was "working on a fix," but that it was unlikely to release a patch until its next round of monthly security fixes — scheduled for February 11.

Microsoft assigned the bug with a common vulnerability identifier, CVE-2020-0674, but specific details of the bug have yet to be released.

When reached, a Microsoft spokesperson did not comment.

Mozilla says a new Firefox security bug is under active attack

Yahoo Sports
Lions' new uniforms get leaked early, and they find some humor in it
The Lions' new uniforms got released prematurely.
5h ago
Yahoo Sports
Indianapolis Star columnist Gregg Doyel apologizes after awkward, uncomfortable interaction with Caitlin Clark
Gregg Doyel flashed a heart sign at Caitlin Clark at her introductory press conference on Wednesday afternoon to kick off an incredibly strange back-and-forth.
22h ago
Yahoo Sports
Boban Marjanović hilariously misses free throws on purpose to give Clippers fans free chicken
Boban Marjanović is a man of the people.
4d ago
Yahoo Sports
Rangers' Jack Leiter strikes out first batter he faces but gets roughed up by Tigers in historic MLB debut
Leiter lasted 3 2/3 innings in his MLB debut for the Rangers.
2h ago
Yahoo Sports
UFC 300: 'We're probably gonna get sued' after Arman Tsarukyan appeared to punch fan during walkout
'We'll deal with that Monday,' Dana White said about Arman Tsarukyan appearing to punch a fan during his UFC 300 walkout.
4d ago
Yahoo Sports
Nike responds to backlash over Team USA track kits, notes athletes can wear shorts
The new female track uniform looked noticeably skimpy at the bottom in one picture, which social media seized upon.
5d ago
Yahoo Sports
Rob Gronkowski's first pitch before the Red Sox's Patriots' Day game was typical Gronk
Never change, Gronk.
3d ago
Yahoo Finance
Trump Media stock jumps for second day as company goes to battle with short sellers
Trump Media is advising investors on ways to prevent their shares from being loaned for a short-interest position.
4h ago
Autoblog
2024 Shelby Super Snake upgrades the Mustang with insane power and plenty of carbon fiber
Shelby's new Super Snake is a super-limited, one-year-only build that takes the Mustang to a whole new level of performance.
4h ago
Yahoo Sports
MLB Power Rankings: Braves, Yankees surge to the top, followed by Dodgers, Orioles, Brewers
Let's identify one player exceeding expectations for each team through the first few weeks of 2024.
2d ago
Yahoo Sports
76ers' statue for Allen Iverson draws jokes, outrage due to misunderstanding: 'That was disrespectful'
Iverson didn't get a life-size statue. Charles Barkley and Wilt Chamberlain didn't either.
6d ago
TechCrunch
TechCrunch Minute: New Atlas robot stuns experts in first reveal from Boston Dynamics
This week Boston Dynamics retired its well-known Atlas robot that was powered by hydraulics. Then today it unveiled its new Atlas robot, which is powered by electricity. The change might not seem like much, but TechCrunch's Brian Heater told the TechCrunch Minute that the now-deprecated hydraulics system was out of date.
1d ago
Yahoo Sports
Former Augusta National Golf Club employee charged with stealing millions in Masters memorabilia
The former employee was a warehouse coordinator in charge of Masters memorabilia.
7h ago
Yahoo Sports
Caitlin Clark reportedly close to 8-figure deal with Nike that includes signature shoe
Clark's endorsement deal with Nike is set to dwarf her WNBA salary.
19h ago
Yahoo Sports
LSU transfer Hailey Van Lith reportedly headed to TCU
Hailey Van Lith is transferring to TCU after an uneven year at LSU.
5h ago
Yahoo Sports
UFC 300: Kayla Harrison introduces herself to UFC fans with utter domination of Holly Holm
Harrison was quick to call for a title fight after the win, and it's hard to imagine why she wouldn't get it.
5d ago
TechCrunch
Tesla layoffs hit high performers, some departments slashed, sources say
Tesla management told employees Monday that the recent layoffs -- which gutted some departments by 20% and even hit high performers -- were largely due to poor financial performance, a source familiar with the matter told TechCrunch. The layoffs were announced to staff just a week before Tesla is scheduled to report its first-quarter earnings. The move comes as Tesla has seen its profit margin narrow over the past several quarters, the result of an EV price war that has persisted for at least a year.
2d ago
Yahoo Sports
Mock Draft Monday with Daniel Jeremiah: Bears snag Odunze, Raiders grab a QB
It's another edition of 'Mock Draft Monday' on the pod and who better to have on then the face of NFL Network's draft coverage and a giant in the industry. Daniel Jeremiah joins Matt Harmon to discuss his mock draft methodology, what he's hearing about this year's draft class and shares his favorite five picks in his latest mock draft.
4d ago
Yahoo Sports
The Scorecard: 10 fantasy baseball hot takes to know through two weeks
Fantasy baseball analyst Dalton Del Don debuts The Scorecard, a weekly series featuring his takes on key MLB player notes.
2d ago
Yahoo Sports
How Victor Wembanyama's rookie season ranks in NBA history
Victor Wembanyama's rookie NBA season is finished. The San Antonio Spurs will sit him in Sunday's regular-season finale. Where does his first season rank among the league's greats?
5d ago

News

Life

Entertainment

Finance

Sports

New on Yahoo

Microsoft says it will fix an Internet Explorer security bug under active attack

Recommended Stories

Lions' new uniforms get leaked early, and they find some humor in it

Indianapolis Star columnist Gregg Doyel apologizes after awkward, uncomfortable interaction with Caitlin Clark

Boban Marjanović hilariously misses free throws on purpose to give Clippers fans free chicken

Rangers' Jack Leiter strikes out first batter he faces but gets roughed up by Tigers in historic MLB debut

UFC 300: 'We're probably gonna get sued' after Arman Tsarukyan appeared to punch fan during walkout

Nike responds to backlash over Team USA track kits, notes athletes can wear shorts

Rob Gronkowski's first pitch before the Red Sox's Patriots' Day game was typical Gronk

Trump Media stock jumps for second day as company goes to battle with short sellers

2024 Shelby Super Snake upgrades the Mustang with insane power and plenty of carbon fiber

MLB Power Rankings: Braves, Yankees surge to the top, followed by Dodgers, Orioles, Brewers

76ers' statue for Allen Iverson draws jokes, outrage due to misunderstanding: 'That was disrespectful'

TechCrunch Minute: New Atlas robot stuns experts in first reveal from Boston Dynamics

Former Augusta National Golf Club employee charged with stealing millions in Masters memorabilia

Caitlin Clark reportedly close to 8-figure deal with Nike that includes signature shoe

LSU transfer Hailey Van Lith reportedly headed to TCU

UFC 300: Kayla Harrison introduces herself to UFC fans with utter domination of Holly Holm

Tesla layoffs hit high performers, some departments slashed, sources say

Mock Draft Monday with Daniel Jeremiah: Bears snag Odunze, Raiders grab a QB

The Scorecard: 10 fantasy baseball hot takes to know through two weeks

How Victor Wembanyama's rookie season ranks in NBA history