Microsoft and Mozilla have confirmed that a newly discovered security vulnerability in their web browsers could be exploited by hackers to steal information. However, exploiting this vulnerability is quite challenging.
Security experts have recently identified that Microsoft’s Internet Explorer, Firefox, and several other Mozilla browsers contain security flaws in their handling of JavaScript events. Hackers could potentially exploit this security vulnerability to secretly download files and steal user information…
However, exploiting this vulnerability requires a significant amount of interaction with the victim. For this reason, both Microsoft and Mozilla do not consider this security flaw to be particularly dangerous, and thus developers are not in a rush to fix it. Instead, both companies plan to address this issue in the next version of their browsers, although they have not specified which version it will be or when it will be released.
“This security flaw does not allow malicious hackers to execute code on the victim’s system without adaptive interaction from the victim. It is these interactions that could lead to the risk of information theft. Microsoft has plans to address this security vulnerability in the next version of Internet Explorer,” a Microsoft representative stated.
Mike Schroepfer, Vice President of Engineering at Mozilla, also agrees with Microsoft’s assessment. “This is merely a security issue with a relatively low level of danger because it requires a series of user interactions while not allowing for remote code execution. However, we do not take this matter lightly and are still working to resolve it in upcoming versions of Firefox.”
Hoàng Dũng
