Security researchers at Microsoft have disclosed a critical exploit chain, dubbed "AutoJack," that can turn an AI browsing agent into a vehicle for remote code execution on a developer's machine.