Security News > 2020 > February > Microsoft Patches IE Zero-Day, 98 Other Vulnerabilities
2020-02-11 19:29
Microsoft disclosed the existence of the Internet Explorer zero-day on January 17, when it promised to release patches and provided a workaround.
Microsoft has credited Google's Threat Analysis Group and Chinese cybersecurity firm Qihoo 360 for reporting the vulnerability.
Microsoft has also patched four important-severity vulnerabilities that have been publicly disclosed before the company released fixes.
In total, the company has patched a dozen vulnerabilities rated critical in Windows and its web browsers.
Trend Micro's Zero Day Initiative has looked at Microsoft's advisories and highlighted one vulnerability in Exchange that can be exploited for code execution by sending a specially crafted email to the target.
News URL
Related news
- Microsoft January 2025 Patch Tuesday fixes 8 zero-days, 159 flaws (source)
- Microsoft fixes actively exploited Windows Hyper-V zero-day flaws (source)
- 3 Actively Exploited Zero-Day Flaws Patched in Microsoft's Latest Security Update (source)
- Cybercrime gang exploited VeraCore zero-day vulnerabilities for years (CVE-2025-25181, CVE-2024-57968) (source)
- Microsoft February 2025 Patch Tuesday fixes 4 zero-days, 55 flaws (source)
- Microsoft fixes two actively exploited zero-days (CVE-2025-21418, CVE-2025-21391) (source)
- Patch Tuesday: Microsoft Patches Two Actively Exploited Zero-Day Flaws (source)
- Microsoft fixes Power Pages zero-day bug exploited in attacks (source)