Microsoft Patches Remote Execution, Spoofing Flaws Under Active Exploit

HealthITSecurity.com

Jessica Davis

The Department of Homeland Security Cybersecurity and Infrastructure Security Agency alerted to two software updates from Microsoft. The latest patch addresses both a spoofing vulnerability and a remote code execution (RCE) flaw currently under active exploit.

The RCE flaw CVE-2020-1380 is found in the way the scripting engine handles objects in Internet Explorer memory, which could become corrupted...

Get the Morning Update

Thanks for subscribing!