Well, you must have heard the news that Microsoft has released a new browser based on Google’s Chromium. This new browser is also going to be named as Edge but it is not currently ready. For this, Microsoft has released the Chromium-based Edge for testing in Dev channel. This browser will precede the Edge browser which was bundled by Microsoft with Windows 10. However, you might also remember the Internet Explorer. IE, as it is shortly called, was the default browser for a very long time on Windows.
We now have some worrying news if you are using Internet Explorer still, though. Even if you have stopped using Internet Explorer, you are in danger if you have it installed on your PC. This is because Internet Explorer is vulnerable to an exploit. And you do not have to use the browser as well, just having it on your PC is enough. So, make sure to uninstall Internet Explorer right now and continue regarding this article.
A security researcher named John Page has found this vulnerability and has even told Microsoft about the same. However, John said that Microsoft just told him that they will “consider” a fix in the future versions of Windows 10. This prompted John Page to come out in public and tell about this issue.
Explaining this vulnerability, Page says “Internet Explorer is vulnerable to XML External Entity attack if a user opens a specially crafted .MHT file locally,” He adds that “This can allow remote attackers to potentially ex filtrate Local files and conduct remote reconnaissance on locally installed Program version information.”
In simpler terms, hackers are trying to take advantage of .mht files which are already altered. Since no other browser except Internet Explorer supports this file, you have to open it in IE. So if you click to open the file, Windows opens it in Internet Explorer by default.
Source: Altervista