×
Trending
The PlayStation 5 Pro is real and likely to be launched by the end of 2024
The PlayStation 5 Pro is real and likely to be launched by the end of 2024
One UI 6.1 expands to the Samsung Galaxy S22, Z Fold4, Z Flip4, and Tab S8
One UI 6.1 expands to the Samsung Galaxy S22, Z Fold4, Z Flip4, and Tab S8
Lens flare and ghosting could finally be less of a problem on the Apple iPhone 16 Pro
Lens flare and ghosting could finally be less of a problem on the Apple iPhone 16 Pro
News
News Categories
AV SystemsBluetooth HeadsetsCasingsCoolersCPUDigital PaymentsExternal StorageGames & GearGraphics CardsHard Disk DrivesHeadphonesInkjet PrintersLaser PrintersMedia Streamers and HubsMemoryMobile PhonesMotherboardNASNetworkingOptical DrivesPortable Media PlayersPower Supply UnitsProjectorsSmartphones & TabletsSolid State DrivesSpeakersTabletsTelcoTelevisionsDesktop SystemsEsportsNetworking & TelcoNotebooksToys & CollectiblesWearablesInput DevicesMonitorsMovies & ShowsPhotographyPrintersStorageApps & SoftwareInternet, Cloud, eCommerceComputingPC ComponentsAudio & VisualGaming & Entertainment CultureBlu-ray PlayersSmart LivingSmart Living & LifestyleAutomotive TechScience & TechTravel & AviationBiz & SME TechOthers

Security Firm Finds Multiple Zero-Day Vulnerabilities in Windows 8 and IE10

By Wong Chung Wee - on 6 Nov 2012, 1:15pm

Security Firm Finds Multiple Zero-Day Vulnerabilities in Windows 8 and IE10

Researchers at Vupen Security, a private security firm that is based in France, claimed that they have uncovered multiple zero-day vulnerabilities in Windows 8 and IE10. These security flaws may potentially allow cybercriminals to gain control of a Windows 8 machine remotely.

(Image Source: Vupen Security)

The firm has uncovered ways to bypass the security features of Windows 8 and Vupen Chief Executive, Mr. Chaouki Bekrar said in an email to PCWorld that they managed to "chain" multiple vulnerabilities in Windows 8 and Internet Explorer 10 to remotely execute code via a webpage that allowed them to take over an affected Windows 8 machine. However, the security firm did concede that Windows 8 is one of the most secure operating system from Microsoft and it would take highly-skilled hackers to be able to chain these vulnerabilities together and exploit them collectively.

Vupen is a security research firm who essentially sells their proprietary exploits to the highest bidder for profits; however, the firm has a white list of clients with deep pockets who are usually large corporations or governmental agencies. The firm will keep its findings private until it can find a willing buyer for the information about the vulnerability. Due to its highly secretive business operations, it is not known how the firm managed to bypass the exploit-mitigation features of Windows 8 and IE10.

Previously, we reported on the security risk of IE10 on Windows 8 due to security vulnerabilities in the browser's embedded Flash player and Microsoft has already issued a patch prior to the launch of Windows 8. For this current discovery of security flaws, Microsoft has yet to issue an formal response as it has not received any technical details. As an assurance to Windows 8 users, Vupen Chief Executive did mention to PCWorld that because of the security features in Microsoft's latest OS, he did not expect hackers to find vulnerabilities on their own for a while. Vupen is actually well-known for uncovering many vulnerabilities across numerous software systems.

(Source: Vupen Security, PCWorld)

Join HWZ's Telegram channel here and catch all the latest tech news!
windows 8 online security information security zero-day exploits vuzen
Our articles may contain affiliate links. If you buy through these links, we may earn a small commission.