Chinese Hackers Dig into New IE Bug, Says Google Researcher

Monday Jan 3rd 2011 by Staff

A security researcher says he discovered about 100 vulnerabilities in popular browsers using a fuzzing tool, which was accidentally leaked.

Computerworld: Noted browser vulnerability researcher and Google security engineer Michal Zalewski says that he has found around 100 bugs in Internet Explorer, Firefox, Chrome, Safari and Opera using a new "fuzzing" tool he developed. Another developer leaked the location of the tool, and it was downloaded by an IP address from China. That prompted Zalewski to say "I have reasons to believe that the evidently exploitable vulnerability [in IE] discoverable by cross_fuzz is independently known to third parties in China."

The other browsers have fixed some of the issues found by Zalewski, but Microsoft has not yet patched the security hole.

Mobile Site | Full Site
Copyright 2017 © QuinStreet Inc. All Rights Reserved