image credit: Pixabay

Microsoft reports Zero-Day Internet Explorer vulnerability exploited in the wild

January 20, 2020

A Microsoft security advisory published last Friday warns users of a zero-day vulnerability affecting Internet Explorer 9, 10 and 11 when running on Windows 7 (recently discontinued), 8.1, 10, Server 2008, Server 2012, Server 2016, and Server 2019.

The vulnerability, indexed as CVE-2020-0674, “could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user,” reads the advisory. The bug, which poses a moderate risk, was identified in the way the scripting engine handles objects in memory of Internet Explorer and triggers through JScript.dll library.

Read More on Hot for Security