Threat Level: green Handler on Duty: Guy Bruneau

SANS ISC: Internet Storm Center - SANS Internet Storm Center Internet Storm Center


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Last Daily Podcast (Fri, Feb 24th):#SHA1 Collisions Found; Mirai Botnet Arrest

Latest Diaries

Unpatched Microsoft Edge and IE Bug

Published: 2017-02-25
Last Updated: 2017-02-25 03:38:32 UTC
by Guy Bruneau (Version: 1)
0 comment(s)

Microsoft Edge and Internet Explorer can be exploited by a type confusion in HandleColumnBreakOnColumnSpanningElement. A POC was released here.

[1] https://bugs.chromium.org/p/project-zero/issues/detail?id=1011#c2

-----------
Guy Bruneau IPSS Inc.
Twitter: GuyBruneau
gbruneau at isc dot sans dot edu

Keywords: Bug Exploit
0 comment(s)

If you have more information or corrections regarding our diary, please share.

Recent Diaries

Cloudflare data leak...what does it mean to me?
Feb 24th 2017
1 day ago by Rick (3 comments)

Practical collision attack against SHA-1
Feb 23rd 2017
2 days ago by Rick (4 comments)

Quick and dirty generic listener
Feb 22nd 2017
3 days ago by Jim (0 comments)

Microsoft Patch Tuesday, or is that "Patch Next Tuesday"? - Flash Player RCE patched today
Feb 21st 2017
3 days ago by Rob VandenBrink (1 comment)

2 Apple Updates Today as Well - GarageBand and Logic Pro X
Feb 21st 2017
3 days ago by Rob VandenBrink (1 comment)

Investigating Off-Premise Wireless Behaviour (or, "I Know What You Connected To")
Feb 21st 2017
3 days ago by Rob VandenBrink (6 comments)

Hardening Postfix Against FTP Relay Attacks
Feb 20th 2017
5 days ago by Johannes (2 comments)

Brazilian malspam sends Autoit-based malware
Feb 18th 2017
1 week ago by Brad (4 comments)

View All Diaries →

Latest Discussions

The format of BGP messages with routeviews
created Feb 22nd 2017
3 days ago by samara (0 replies)

Platform Markings on Headlines
created Feb 9th 2017
2 weeks ago by Anonymous (0 replies)

Automation Software, Consultant or Both?
created Jan 25th 2017
1 month ago by Anonymous (1 reply)

Importance of File Integrity Monitoring software
created Jan 18th 2017
1 month ago by Promisec (0 replies)

New Incident Response/Forensics tool : srum-dump.exe
created Jan 12th 2017
1 month ago by Mark (1 reply)

View All Forums →

Latest News

View All News →

Top Diaries

Dyn.com DDoS Attack
Oct 21st 2016
4 months ago by Johannes (9 comments)

Microsoft Patch Tuesday Delayed
Feb 18th 2017
1 week ago by Johannes (7 comments)

Critical Vulnerability in Cisco WebEx Chrome Plugin
Jan 24th 2017
1 month ago by Johannes (10 comments)

Port 7547 SOAP Remote Code Execution Attack Against DSL Modems
Nov 29th 2016
2 months ago by Johannes (21 comments)

RTRBK - Router / Switch / Firewall Backups in PowerShell (tool drop)
Feb 18th 2017
1 week ago by Rob VandenBrink (9 comments)