Posts

Showing posts from December, 2020

August Patch Tuesday Fixes Critical IE, Major Windows Vulnerabilities Exploited from the Wild

Even the August batch of Patch Tuesday updates comprises 120 updates for the Microsoft package, together with 17 repairs rated as Critical, and the remaining 103 rated as Crucial. Is a vital Internet Explorer (IE) vulnerability which can be mistreated for remote code execution (RCE), whereas still is an Windows 10 security gap which can be used for spoofing. Administrators are advised to update their systems whenever possible as both flaws are discovered being exploited in the wild. The Zero Day Initiative (ZDI) disclosed 11 flaws, five of which are critical bugs that revealed RCE vulnerabilities, whereas the remaining half are ranked as important vulnerabilities that can be abused to acquire escalation of rights, RCE, information disclosure, and spoofing. Currently abused in the wild Two of the repairs speech updates for vulnerabilities currently being exploited in the wild. CVE-2020-1380 is a search motor memory corruption vulnerability in IE11 which permits an attacker to run arbitr