Palo Alto Networks Researcher Identifies Critical Internet Explorer Vulnerability

L4 Transporter

Posted by Ryan Olson on March 10, 2015


Palo Alto Networks researcher Bo Qu discovered a new critical Internet Explorer (IE) vulnerability affecting IE versions 8, 9, 10 and 11. This is included in Microsoft’s March 2015 Security Bulletin MS15-018 and MS15-019, and documented in Microsoft Security Bulletin MS15-MAR.

As part of our continuing commitment to the security research community, these vulnerabilities were disclosed to Microsoft through our participation in the Microsoft Active Protections Program (MAPP), which ensures the timely, responsible disclosure of new vulnerabilities and creation of protections from security vendors.


Palo Alto Networks is a regular contributor to IE vulnerability research. Previous critical IE vulnerability discoveries included four in February (revised from three), three in November 2014, one in October 2014, 15 in September 2014three in August 2014, 10 in July 2014, and 22 in June 2014 (revised from 21).


By proactively identifying these vulnerabilities, developing protections for our customers, and sharing them with Microsoft for patching, we are removing one weapon used by attackers to compromise enterprise and government networks.

L7 Applicator

Nice work, thanks for being part of the research community.

Ask Questions Get Answers Join the Live Community