Microsoft has released a critical security patch for Internet Explorer.
Covering all versions of the browser since 5.01, the new patch corrects a series of flaws, including one that would allow hackers to run code on machines using a pop-up web page.
All the patches relate to the specific problem of hackers designing web pages that can subvert a PC without the need for users to open any attachments or malware.
For example, one of the holes allows hackers to conceal malware in a pop-up window.
Unpatched versions of Internet Explorer do not properly examine data sent when a web page requests a pop-up window from its own server, which means that malware could be inserted.
There is also a problem with the way Internet Explorer handles XML data binding. XML is used to attach data to specific points on a web page, which could then be pushed onto users' PCs.
Users are also vulnerable to these problems if they receive a specially crafted email from hackers. The patch strengthens the browser's protection against such dynamic HTML emails that can run scripts automatically.
More details and the patch can be found here.
Cotton seedling freezes to death as Chang'e-4 shuts down for the Moon's 14-day lunar night
Fortnite easily out-earns PUBG, Assassin's Creed Odyssey and Red Dead Redemption 2 in 2018
Meteor showers as a service will be visible for about 100 kilometres in all directions
Saturn's rings only formed in the past 100 million years, suggests analysis of Cassini space probe data
New findings contradict conventional belief that Saturn's rings were formed along with the planet about 4.5 billion years ago