Spider.io claims that Microsoft’s statements aren’t entirely true
The Internet Explorer mouse cursor vulnerability saga continues with a new episode, this time following an official reply courtesy of Spider.io, the company that actually discovered the flaw.The security firm claims that Microsoft’s latest statements aren’t entirely true and Internet Explorer is really the only browser affected by the flaw.
“There are similar capabilities available in other browsers,” Microsoft said in a blog post a couple of days ago.
Spider.io, however, says that Microsoft’s in-house browser is actually the only one that allows attackers to track mouse cursor position.
“It is important to clarify that other browsers do not leak mouse-cursor position outside of the browser window in the way that Internet Explorer does,” the company says.
In the meantime, Microsoft has confirmed the issue and revealed that it would release a patch for it in the near future.