Security News > 2020 > February > Microsoft Patches IE Zero-Day, 98 Other Vulnerabilities
Microsoft disclosed the existence of the Internet Explorer zero-day on January 17, when it promised to release patches and provided a workaround.
Microsoft has credited Google's Threat Analysis Group and Chinese cybersecurity firm Qihoo 360 for reporting the vulnerability.
Microsoft has also patched four important-severity vulnerabilities that have been publicly disclosed before the company released fixes.
In total, the company has patched a dozen vulnerabilities rated critical in Windows and its web browsers.
Trend Micro's Zero Day Initiative has looked at Microsoft's advisories and highlighted one vulnerability in Exchange that can be exploited for code execution by sending a specially crafted email to the target.
News URL
Related news
- Microsoft patches two actively exploited zero-days (CVE-2024-29988, CVE-2024-26234) (source)
- Microsoft fixes two Windows zero-days exploited in malware attacks (source)
- Microsoft Fixes 149 Flaws in Huge April Patch Release, Zero-Days Included (source)
- Week in review: Palo Alto Networks firewalls under attack, Microsoft patches two exploited zero-days (source)
- State-Sponsored Hackers Exploit Two Cisco Zero-Day Vulnerabilities for Espionage (source)
- BeyondTrust Report: Microsoft Security Vulnerabilities Decreased by 5% in 2023 (source)
- Microsoft May 2024 Patch Tuesday fixes 3 zero-days, 61 flaws (source)
- Microsoft fixes Windows zero-day exploited in QakBot malware attacks (source)
- May 2024 Patch Tuesday: Microsoft fixes exploited zero-days (CVE-2024-30051, CVE-2024-30040) (source)
- Microsoft Patches 61 Flaws, Including Two Actively Exploited Zero-Days (source)