Plus, WeLeakInfo? Not anymore!
Roundup Welcome to another Reg roundup of security news.
Still using Internet Explorer? Don't. There's another zero-day
Microsoft let slip on Friday an advisory detailing an under-attack zero-day vulnerability (CVE-2020-0674) for Internet Explorer. The scripting engine flaw can be exploited to gain remote code execution on a vulnerable machine by way of a specially crafted webpage. The flaw can be mitigated by restricting access to the JavaScript component JScript.dll, and thus far there is no patch available.
"Microsoft is aware of this vulnerability and working on a fix," the software giant noted.
"Our standard policy is to release security updates on Update Tuesday, the second Tuesday of each month. This predictable schedule allows for partner ..
Support the originator by clicking the read the rest link below.
