Many browser-related vulnerabilities aren’t actually inherent in the browser. In many cases, a vulnerability occurs because of the way the browser interacts with other applications and the operating system. Microsoft said the vulnerability wasn’t technically with IE7, but with Outlook Express. Security experts agree there’s plenty of blame to go around. You can minimize your risk by keeping browser patches and antivirus, antispyware up-to-date, removing plug-ins you don’t need, says Arbor’s Sunil James.”]
Source: https://www.darkreading.com/analytics/don-t-blame-the-browser