Become a fan of Slashdot on Facebook

 



Forgot your password?
typodupeerror
×
Bug Google Microsoft Security

Google Discloses Yet Another New Unpatched Microsoft Vulnerability In Edge/IE (bleepingcomputer.com) 73

An anonymous reader quotes BleepingComputer: Google has gone public with details of a second unpatched vulnerability in Microsoft products, this time in Edge and Internet Explorer, after last week they've published details about a bug in the Windows GDI (Graphics Device Interface) component... The bug, discovered by Google Project Zero researcher Ivan Fratric, is tracked by the CVE-2017-0037 identifier and is a type confusion, a kind of security flaw that can allow an attacker to execute code on the affected machine, and take over a device.

Details about CVE-2017-0037 are available in Google's bug report, along with proof-of-concept code. The PoC code causes a crash of the exploited browser, but depending on the attacker's skill level, more dangerous exploits could be built... Besides the Edge and IE bug, Microsoft products are also plagued by two other severe security flaws, one affecting the Windows GDI component and one the SMB file sharing protocol shipped with all Windows OS versions...

Google's team notified Microsoft of the bug 90 days ago, only disclosing it publicly on Friday.
This discussion has been archived. No new comments can be posted.

Google Discloses Yet Another New Unpatched Microsoft Vulnerability In Edge/IE

Comments Filter:
  • by Anonymous Coward

    Okay, I get the general principle of disclosure - users are at least aware of the issue and can take steps to protect themselves, plus it puts pressure on the supplier to fix the problem thus again benefiting users - but in this case that doesn't make any sense because surely Edge doesn't actually have any users? Are there really people who don't know there are other browsers?

  • What am I missing? (Score:5, Interesting)

    by TheRealMindChild ( 743925 ) on Sunday February 26, 2017 @04:56PM (#53935109) Homepage Journal
    Note: The analysis below is based on an 64-bit IE (running in single process mode) running on Windows Server 2012 R2. Microsoft Symbol Server has been down for several days and that's the only configuration for which I had up-to-date symbols. However Microsoft Edge and 32-bit IE 11should behave similarly.

    Ok, there is no information as to why this would affect any version other than the 64-bit IE that the guy tested. Especially since Edge *supposedly* uses a separate codebase, and this is an exploit in the MSHTML engine anyway
    • by Anonymous Coward

      By default IE spawns multiple processes for tab isolation (like Chrome)

    • by Anonymous Coward

      Edge wasn't a clean rewrite. It's a fork from the IE codebase.

  • by supremebob ( 574732 ) <`moc.seiticoeg' `ta' `yknujemeht'> on Sunday February 26, 2017 @04:56PM (#53935111) Journal

    For all of those "Chrome is draining your battery faster than Edge would" notification messages in the Windows notification center when you use Chrome with Windows 10.

    That tactic just seems slimy to me. It seems that Microsoft is once again trying to exploit their near monopoly of desktop PC OS's to regain browser market share.

    • by Anonymous Coward

      This is as it should be. Competition, and competitors pointing out the flaws in each others products. That creates more pressure to fix fast - and to test before sw products go out the door which may avoid such embarrasments entirely.

      I have no symphathy with anyone wanting/expecting 'grace time' before public disclosure. (Apparently, they got some.) Compare with the open source world, where every exploit is immediately public because the bug tracker is public. You fix a serious error within hours of reporti

      • by Harlequin80 ( 1671040 ) on Sunday February 26, 2017 @06:06PM (#53935411)

        If I buy a fridge and the fridge keeps saying "Cottee's codial tastes better than x brand you're using" I would have an issue with that.

        I hate that Windows 10 is an advertising vector.

      • by Anonymous Coward

        This is as it should be. Competition, and competitors pointing out the flaws in each others products. That creates more pressure to fix fast

        No, It's creating an annoying and distractive load of bollocks on my notification bar.

        • by Ocker3 ( 1232550 )
          Exactly, I don't care much if they're sniping at each other in the press, it's when they start throwing up notifications when I'm otherwise busy is when I started getting angry.
      • by HiThere ( 15173 )

        I'm sorry, but the primary injured party are the users. The manufacturer is at most a secondary victim. So the delay to fix is appropriate. But 90 days is about right. If you hold off forever an unscrupulous manufacturer would just let the problem persist, and once it becomes known to the criminals, it WILL be abused. 90 days may be too long, because they might have found the problem even before Google did, but you need to allow the manufacturer *some* time to fix the problem, because they aren't the p

    • Re: (Score:1, Informative)

      by Anonymous Coward

      Have you ever done a Google search or used YouTube when not using Chrome. Constant blue bar pop-up up telling you it all works better with Chrome, always comes back even if you press no, time and time again - that is slimy.

    • I use Chrome on Windows 10 90% of the time and I can't recall ever getting a notification like that. Perhaps there's an option somewhere to disable it?
  • by khz6955 ( 4502517 ) on Sunday February 26, 2017 @05:04PM (#53935155)
    Microsoft Edge running under windows is the most secure browser on the planet, Microsoft says so.
    • Re: (Score:3, Insightful)

      Microsoft Edge running under windows is the most secure browser on the planet, Microsoft says so.

      As much as it is fashionable to bash MS at this anti MS website I will ask if you think Chrome is any better? It is kind of unfair as of course Google won't disclose it's own bugs.

      The problem is anything that executes programs (javascript and flash count even if they are not compiled) from anywhere on an untrusted world wide platform is stupid beyond belief!

      Perhaps we can replace javascript once logic can be performed through CSS. Of course at that point I would imagine CSS would then become an attack vecto

      • "As much as it is fashionable to bash MS at this anti MS website"

        For a long time, this place has been know as the Microsoft slashdot. Do you have anything to say regarding Microsoft's claims regarding the better security in Edge as compared to other browsers?

        "Internet Explorer 10 introduced Enhanced Protected Mode (EPM), based on the Windows 8 app container technology .. Microsoft Edge takes the sandbox even farther, running its content processes in app containers not just by default, but all of the t
        • IE 11/Edge may not be safer. I just feel Chrome kind of has an unfair advantage and I dislike the whole concept we have with the way the web works security wise. If you want a pro MS version of this head to www.neowin.net? Trust me, you will be shocked if you feel this site is pro MS haha.

          I go to both sites as I want to hear both sides of stories. There are some on neowin.net who do run Linux in the forums, but it is very anti android and pro MS phone and want exciting new .NET technology or Surface will be

          • by mwvdlee ( 775178 )

            What is unfair?
            Who is stopping Microsoft from starting a similar project to find bugs in Chrome?

      • by HiThere ( 15173 )

        You say "Google won't disclose it's own bugs". I'm not sure I believe that, but I do believe they won't publicize them. But the real question is "Do they fix them?". Of course, that would mean they would need to inspire upgrades...which probably means they would need to disclose the bugs, if not how to abuse them.

        OTOH, the was reported a way to evade almost all bugs in recent MicroSoft products ... disable administrator mode. This sounds like it might come with considerable in the way of downsides, but

  • by bulled ( 956533 ) on Sunday February 26, 2017 @06:20PM (#53935459)
    Why not:

    Microsoft fails to patch yet another vulnerability for 90 days?

    Right, because isn't so much news as status quo.
  • by Anonymous Coward

    They are put in the code for use by the NSA...

Some people claim that the UNIX learning curve is steep, but at least you only have to climb it once.

Working...