Researchers have disclosed a security flaw in the Windows MSHTML platform that could be exploited to bypass integrity protections on targeted devices. Microsoft has since patched the vulnerability, which was identified as CVE-2023-29324, and is urging users to install internet explorer updates to address any remaining vulnerabilities. The bug was described as a zero-click vulnerability, which could lead to NTLM credentials theft. Additionally, the flaw was identified as a bypass for a fix that Microsoft implemented in March 2023 to resolve a critical privilege escalation flaw in Outlook