As soon as you install Windows on your PC and open Internet Explorer for the first and last time to download a different browser IE requests you to try their browser we already have thousands of reasons not to use Internet Explorer but here’s a new reason.
According to security researcher John Page, the Internet Explorer zero-day exploit allows hackers to steal your personal data files from your pc.
Internet Explorer (IE) is a web browser developed by Microsoft. Like any software, it may have vulnerabilities that can be exploited by hackers. Zero-day exploits refer to vulnerabilities that are discovered and exploited by hackers before the software developer becomes aware of them.
The zero-day exploit is found in Internet Explorer’s use of MHT files when users save any web pages. But the file-stealing vulnerability isn’t necessarily in the saving of webpages in this format; as Page notes, it’s in the opening of MHT files. MHT is the default standard in which internet explorer saves the webpages when a user hits ctrl+s while modern browsers like Chrome and Firefox use the standard HTML format to save the webpage.
John Page posted about the vulnerability in IE that can expose users’ data to a hacker if they open MHT files.
“This can allow remote attackers to potentially exfiltrate Local files and conduct remote reconnaissance on locally installed
Program version information,” Page said. “For example, a request for ‘c:\Python27\NEWS.txt’ can return version information for that program.”
In Windows, all MHT files are set to open in Internet Explorer by default so exploiting this vulnerability is trivial as the hacker will just have to send MHT files via email, or instant messaging which the user can open by double-clicking. Page said the actual vulnerable code relies on how Internet Explorer deals with CTRL+K (duplicate tab), “Print Preview,” or “Print” user commands. “A simple call to the window.print() Javascript function should do the trick without requiring any user interaction with the webpage,” he said. Also, this exploit can disable Internet Explorer’s security alert system. “Typically, when instantiating ActiveX Objects like ‘Microsoft. XMLHTTP’ users will get a security warning bar in IE and be prompted to activate blocked content,” the researcher said. “However, when opening a specially crafted. MHT file using malicious < XML > markup tags the user will get no such
active content or security bar warnings.”
If there were a zero-day exploit in Internet Explorer that allows hackers to steal private data, it would be a serious security concern. In such cases, it’s crucial to follow best security practices, including keeping your software up to date with the latest security patches and using additional security measures like firewalls and antivirus software.
To mitigate the risk of zero-day exploits, it’s recommended to use the latest version of Internet Explorer or consider switching to a more modern and secure browser like Google Chrome, Mozilla Firefox, or Microsoft Edge, which has dedicated security teams and frequent updates.
Remember that staying informed about the latest security news, practicing good browsing habits, and being cautious when sharing personal information online is essential for protecting your data and privacy.
John Page also said that he informed Microsoft on the 27th of March but Microsoft didn’t make any move to patch this exploit and replied to Page saying “We determined that a fix for this issue will be considered in a future version of this product or service. At this time, we will not be providing ongoing updates on the status of the fix for this issue, and we have closed this case.”
The exploit is present on the following Windows versions: Windows 10, Windows 7, and Windows Server 2012 R2. In order to keep your data away from hackers be cautious to respond to any messages or emails with MHT files
Leave a Reply