Skip Ribbon Commands
Skip to main content

Patch By: May 08, 2014

Product: Internet Explorer versions 6 to 11
Platform: Windows XP, 2003, 2008, Vista, Windows 7, Windows 8, 2012
Host Remediation: Windows machines are to apply Microsoft patch MS14-021
FNAL Site Actions: Force deadline for patch MS14-021 (for currently supported Windows and IE versions) to be early morning May 8th through automated patching mechanisms.

This security update resolves a publicly disclosed remote code execution vulnerability in Internet Explorer. The vulnerability may corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user within Internet Explorer. An attacker could host a specially crafted website that is designed to exploit this vulnerability through Internet Explorer and then convince a user to view the website. This exploit is currently being seen in the wild in limited attacks at this time.

Microsoft reference URL: https://technet.microsoft.com/library/security/ms14-021