According to ZDNet on April 13, security researchers have released details and proof-of-concept code for a zero-day vulnerability in Internet Explorer (IE browser), which allows hackers to steal files from Windows systems.
The vulnerability can be used to attack when a user opens a .mht file. MHT stands for MHTML Web Archive, which is the default method used by Internet Explorer to save web pages.
This method is mainly related to IE browsers, because newer browsers no longer save web pages in MHT format, but use HTML format, but they still support processing MHT files.
On Windows, MHT files are automatically set to open in IE browser by default, and IE is also the default program to open MHT files. It is very easy for hackers to exploit this vulnerability. They only need to distribute MHT files through email, instant messaging, etc.
Security researcher John Page said the vulnerability could "allow local file disclosure" and allow an attacker to remotely spy on "locally installed program version information." He said the page could also be automated.
Microsoft released a notice on this issue on March 27, and in a message to researchers on April 10, it said that it was "considering fixing this in future products or services." Microsoft also said that this vulnerability should not be taken lightly, as cybercriminal groups have used MHT files for phishing and malware distribution in the past few years.
Previous article:Microsoft confirms hackers had access to some Outlook accounts for months
Next article:How do Amazon and Microsoft address cybersecurity?
- Popular Resources
- Popular amplifiers
LM119H#PBF
- Mir T527 series core board, high-performance vehicle video surveillance, departmental standard all-in-one solutionIn China, there are special safety precautions for special vehicles. "Two passenger vehicles and one dangerous goods vehicle" is a classification method for road transport vehicles, where "two passenger vehicles" refers to passenger vehicles and public transport vehicles, and "one dangerous goods vehicle" refers to ...
- Akamai Expands Control Over Media Platforms with New Video Workflow CapabilitiesAs a distributed cloud service provider, Akamai solves the long-standing problems of today’s centralized cloud model in terms of control, competitive pressures and costs October 15, 2024 – Responsible for Support and Protection ...
- Tsinghua Unigroup launches the world's first open architecture security chip E450R, which has obtained the National Security Level 2 CertificationOn August 22, Unigroup Tongxin released the world's first security chip E450R with both open hardware and software architecture. The chip is used in the fields of data security and algorithm protection and has been approved by UnionPay. ...
- Pickering exhibits a variety of modular signal switches and simulation solutions at the Defense Electronics ShowThe 13th China International Defense Electronics Exhibition will be held at the Beijing National Convention Center from June 26 to 28, 2024. On June 18, 2024, in Clacton-on-Sea, UK. Pickering is a ...
- Parker Hannifin Launches Service Master COMPACT Measuring Device for Field Monitoring and DiagnosticsRecently, Parker Hannifin Corporation, a pioneer in motion and control technology, announced the launch of a powerful measurement device, Service Master COMPACT, which provides ...
- Connection and distance: A new trend in security cameras - Wi-Fi HaLow brings longer transmission distance and lower power consumption
- Smartway made a strong appearance at the 2023 CPSE Expo with a number of blockbuster products
- Dual-wheel drive, Intellifusion launches 12TOPS edge vision SoC
- Toyota receives Japanese administrative guidance due to information leakage case involving 2.41 million pieces of user data
- LED chemical incompatibility test to see which chemicals LEDs can be used with
- Application of ARM9 hardware coprocessor on WinCE embedded motherboard
- What are the key points for selecting rotor flowmeter?
- LM317 high power charger circuit
- A brief analysis of Embest's application and development of embedded medical devices
- Single-phase RC protection circuit
- stm32 PVD programmable voltage monitor
- Introduction and measurement of edge trigger and level trigger of 51 single chip microcomputer
- Improved design of Linux system software shell protection technology
- What to do if the ABB robot protection device stops
- Molex leverages SAP solutions to drive smart supply chain collaboration
- Pickering Launches New Future-Proof PXIe Single-Slot Controller for High-Performance Test and Measurement Applications
- Apple faces class action lawsuit from 40 million UK iCloud users, faces $27.6 billion in claims
- Apple faces class action lawsuit from 40 million UK iCloud users, faces $27.6 billion in claims
- The US asked TSMC to restrict the export of high-end chips, and the Ministry of Commerce responded
- The US asked TSMC to restrict the export of high-end chips, and the Ministry of Commerce responded
- ASML predicts that its revenue in 2030 will exceed 457 billion yuan! Gross profit margin 56-60%
- Detailed explanation of intelligent car body perception system
- How to solve the problem that the servo drive is not enabled
- Why does the servo drive not power on?
- Doesn't high input impedance mean high loss? Why does sampling require high input impedance? Low output impedance, such as running...
- How to set the prohibited routing area when AD wiring
- [Mill Edge AI Computing Box FZ5 Review] Object Detection Demo
- What serial port is UART?
- Read the good book "Operational Amplifier Parameter Analysis and LTspice Application Simulation" 01 LTspice Installation and Example Run
- Power supply circuit or module recommendation (no matter how the positive and negative poles are connected, the power supply can be normal)
- Why signal isolation is important in 48V HEV/EV systems
- 【Silicon Labs Development Kit Review】+ Unboxing Experience
- IIC Timing Diagram
- Please recommend a 5V to positive and negative 15V op amp power supply circuit or chip to share
京公网安备 11010802033920号