Google discloses security flaw in Microsoft Edge before patch availability

By IANS | Updated 20 Feb 2018
Google discloses security flaw in Microsoft Edge before patch availability
  • The vulnerability in Microsoft Edge was first discovered in November 2017, by Google's Project Zero. The vulnerability could let hackers bypass Microsoft Edge's existing security measures to inject malicious code into a victim's computer.

Google has made public the details of a medium-level security flaw in Microsoft Edge browser whose patch is still not produced.

The vulnerability was first discovered in November 2017, by the search giant's Project Zero.

advertisements

According to Engadget, taking advantage of the flaw, hackers could bypass Microsoft Edge's existing security measures to inject malicious code into a victim's computer.

Google, through its Project Zero, notified Microsoft about a bug in November, giving the company the usual 90-day disclosure deadline.

With the three-month deadline over, the team of security analysts employed by Google tasked with finding zero-day vulnerabilities -- Project Zero --went public with the details of the security flaw.

The search giant granted a 14-day extension to Microsoft after it said that the problem was complex and it needed more time to fix it. 

But, Microsoft even missed the second deadline to produce the patch of the vulnerability. However, given Edge's small market share, the security issue was unlikely to affect too many people though it is still embarrassing for the company.

advertisements
advertisements
IANS
Indo-Asian News Service
advertisements
ASK DIGIT

Recent Questions

Will Google destroy Microsoft?
Hina
Sept 12, 2014
Responses
Comments
Be the first one to post the comment
Post a New Comment
You must be signed in to post a comment
advertisements