Posted by Patrick Toomey on Jan 15

It seems that this issue was originally disclosed here:
http://seclists.org/fulldisclosure/2015/Feb/0. Eventually a CVE was
assigned: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0072 and
then MSFT released a patch:
https://technet.microsoft.com/en-us/library/security/ms15-018.aspx. But,
according to https://blog.innerht.ml/ie-uxss/ (and local testing) it
remains unpatched for Windows 8.1 on IE 11. Do anyone have any insight into…