Security News > 2020 > February > February 2020 Patch Tuesday: Microsoft fixes 99 vulnerabilities, Adobe 42
To mark the occasion, Microsoft has released fixes for 99 vulnerabilities - 12 critical, one of which is being exploited in the wild - and Adobe 42, most of which are critical and none actively exploited.
Microsoft fixed nearly 100 vulnerabilities this Tuesday, interspersed through a number of products: Windows, Edge, IE, SQL Server, Exchange Server, Office, and more.
Five of the vulnerabilities fixed in this batch are publicly known and one is under active attack: CVE-2020-0674.
"Overall, this is a very heavy Patch Tuesday on the Microsoft end," noted Jay Goodman, Technical Marketing Manager at Automox.
"The race to patch critical vulnerabilities on your systems within the next 72 hours is on. Attackers will have no shortage of exploitable vulnerabilities and new attack vectors to bring to bear in the coming days with nearly every build of Windows accounted for with critical vulnerabilities."
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/qCjPdUQy2xg/
Related news
- Patch Tuesday for September 2024: Microsoft Catches Four Zero-Day Vulnerabilities (source)
- Microsoft August 2024 Patch Tuesday fixes 9 zero-days, 6 exploited (source)
- Microsoft September 2024 Patch Tuesday fixes 4 zero-days, 79 flaws (source)
- Microsoft confirms IE bug squashed in Patch Tuesday was exploited zero-day (source)
- Week in review: Tips for starting your cybersecurity career, Patch Tuesday forecast (source)
- Vulnerabilities in Microsoft macOS apps may give attackers access to microphone, camera (source)
- September 2024 Patch Tuesday forecast: Downgrade is the new exploit (source)
- Week in review: Vulnerability allows Yubico security keys cloning, Patch Tuesday forecast (source)
- October 2024 Patch Tuesday forecast: Recall can be recalled (source)
Related Vulnerability
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-02-11 | CVE-2020-0674 | Use After Free vulnerability in Microsoft Internet Explorer 10/11/9 A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. | 7.6 |