mobile-bannertablet-bannerdesktop-banner
The Microsoft Corp. logo at a launch event for the company's Windows 8.1 operating system in Tokyo, on Oct. 18, 2013.
The Microsoft Corp. logo at a launch event for the company's Windows 8.1 operating system in Tokyo, on Oct. 18, 2013.  Kiyoshi Ota—Bloomberg/Getty Images

Microsoft Admits to Huge Security Flaw in Internet Explorer

Apr 28, 2014

A flaw in Microsoft’s Internet Explorer web browser could allow hackers access to the personal information of countless millions of web users, especially those still using Windows XP.

On Sunday, the company warned of a glitch in versions 6 to 11 of Internet Explorer that potentially give data thieves using a network computer the same level of access as the legitimate user.

Admitting to being aware of “limited, targeted attacks that attempt to exploit a vulnerability,” Microsoft explained that the "vulnerability exists in the way that Internet Explorer accesses an object in memory that has been deleted or has not been properly allocated.”

Internet Explorer’s market share has dropped precipitously over the past decade, but it remains the browser of choice for around 10% of netizens — behind Google Chrome and Mozilla Firefox.

The bug’s disclosure comes in the wake of Microsoft’s much publicized decision to stop supporting the Windows XP operating system.

“XP users are not safe anymore, and this is the first vulnerability that will be not patched for their system,” Internet security firm Symantec Corp. researcher Christian Tripputi wrote in a blog post.

MORE: Internet Explorer Security Flaw: 4 Ways to Protect Yourself

All products and services featured are based solely on editorial selection. TIME may receive compensation for some links to products and services on this website.