Proof-of-concept code published for Microsoft Edge remote code execution bug

[silversurfer]

A security researcher has published today proof-of-concept code which an attacker can use to run malicious code on a remote computer via the Microsoft Edge browser.
The proof-of-concept (PoC) code is for a Microsoft Edge vulnerability --CVE-2018-8495-- that Microsoft patched this week, part of its October 2018 Patch Tuesday.

The vulnerability was discovered by Kuwaiti security researcher Abdulrahman Al-Qabandi, who reported his findings to Microsoft via Trend Micro's Zero-Day Initiative program.
Today, after making sure Microsoft had rolled out a fix, Al-Qabandi published in-depth details about the Edge vulnerability on his blog.

Source: https://www.zdnet.com/article/proof-of-c...ution-bug/