Microsoft Warns of Zero-Day Internet Explorer Exploits

Microsoft Warns of Zero-Day Internet Explorer Exploits

Microsoft Warns of Zero-Day Internet Explorer Exploits

IE 10 and IE 11 on a range of platforms are affected including Windows 10, Windows RT 8.1, Windows Server 2008 through to Windows Server 2019 are all affected. Notably, the version of Windows officially reached the end of support on January 15.

Considering the high risks associated with this newly discovered vulnerability, Windows 7 users should switch to the new Edge as soon as possible.

Microsoft Internet Explorer contains a scripting engine, which handles execution of scripting languages such as VBScript and JScript. "This vulnerability only affects certain websites that utilize jscript as the scripting engine". According to the regulator, the patch newly released last week addresses 49 of the vulnerabilities, four of which it deemed "highly critical and require immediate attention".

Microsoft assigned the malicious program with a frequent vulnerability identifier, CVE-2020-0674, nonetheless particular well-known points of the malicious program hang yet to be launched. However, the research team, Microsoft and Mozilla still do not know what attackers are exploiting the fault, how they are doing it or who they are targeting.

In an advisory published this weekend, the Cybersecurity and Infrastructure Security Agency (CISA) warns that an attacker can obtain the full control of an unpatched device using a vulnerability in the browser that the Windows operating system ships with. You can check out the fix on Microsoft's advisory.

All supported versions of Windows, including Windows 7, which will no longer receive security updates, is affected by the failure according to Microsoft. We have contacted the company for confirmation, and will update this story when we hear back.

The new Microsoft Edge web browser that is based on Chromium has been released for Windows 7 at a surprising time; it was released one day after Microsoft ended support for Windows 7 and the company revealed already that it will continue to support the browser for the foreseeable future on Windows 7.

Google's Threat Analysis Group has previously numerous flaws to software makers, including not only Microsoft but also Apple (see: Apple Update: Drop Everything and Patch iOS).

Related news

[an error occurred while processing the directive]