Researcher releases browser security tool
![zd-defaultauthor-elinor-mills.jpg](https://www.zdnet.com/a/img/resize/4583c237ea85ebeea0ddda59034dc4a304f98a32/2014/12/04/abed3a65-7b66-11e4-9a74-d4ae52e95e57/zd-defaultauthor-elinor-mills.jpg?auto=webp&fit=crop&frame=1&height=192&width=192)
A security researcher who created a tool to find bugs in major browsers has released it to the public, while warning of an unpatched vulnerability in Internet Explorer.
Michal Zalewski, a Google security researcher based in Poland, announced in a blog post on Saturday that he was releasing a tool called 'cross_fuzz' and said its distribution was a priority because at least one of the vulnerabilities discovered by the tool appears to be known to a mysterious third party.
"I have reasons to believe that the evidently exploitable vulnerability discoverable by cross_fuzz, and outlined in msie_crash.txt, is *independently* known to third parties in China," Zalewski wrote in a separate post.
For more on this story, read Researcher reports apparent China interest in IE hole on CNET News.