Monday, January 20, 2020

Vulnerability In Internet Explorer

There has been found a vulnerability (CVE-2020-0674) affecting Microsoft Internet Explorer browsers. The vulnerability is related to the way that the scripting engine handles objects in memory in Internet Explorer. By exploiting the vulnerability an attacker may execute arbitrary code in the context of the current user. If the current user is logged on with administrative user rights an attacker may be able to take control of an affected system. Microsoft is aware of some targeted attacks exploiting the vulnerability.

Affected:
Internet Explorer 9, 10 and 11

At the moment of writing this there is no update available against the vulnerability. Microsoft has published a workaround while it's working on the update. More information here.

No comments: