Tuesday, January 28, 2020

「IE」のJScriptスクリプトエンジンに未対策の脆弱性、悪用も確認(JVN)

独立行政法人 情報処理推進機構(IPA)および一般社団法人 JPCERT コーディネーションセンター(JPCERT/CC)は1月20日、Microsoftが提供するWebブラウザ「Internet Explorer」のJScriptスクリプトエンジンに、メモリ破損の脆弱性(CVE-2020-0674)が存在すると「Japan Vulnerability Notes(JVN)」で緊急情報を発表した。現時点で対策方法は公開されていないが、すでに本脆弱性を悪用する攻撃が確認されている。 Microsoftによると、IE11、IE10、IE9 は、本脆弱性の影響を受けない jscript9. Source link

Microsoft, DHS Warn of Zero-Day Attack Targeting IE … | National Cyber Security

Software firm is “aware of limited targeted attacks” exploiting a scripting issue vulnerability in Internet Explorer 9, 10, and 11 that previously has...

Apple Dropped Plans to Let iPhone Users Have Fully Encrypt Backups

Apple now officially dropped plans to let iPhone users have their device backup in an encrypted form in Apple’s iCloud service after the...

Microsoft, DHS Warn of Zero-Day Attack Targeting IE Users

Software firm is "aware of limited targeted attacks" exploiting a scripting issue vulnerability in Internet Explorer 9, 10, and 11 that...

Microsoft, DHS Warn of Zero-Day Attack Targeting IE …

Software firm is "aware of limited targeted attacks" exploiting a scripting issue vulnerability in Internet Explorer 9, 10, and 11 that previously has...

Morphisec Protects Customers Against Internet Explorer Scripting Zero Day

Recently, news came out about a vulnerability (CVE-2020-0674) in Microsoft’s Internet Explorer scripting engine based on how the browser handles memory. More specifically,...

Debian LTS: DLA-2073-1: transfig security update>

Several issues have been found in transfig, a XFig figure files converter. CVE-2018-16140 Package : transfig Version : 1:3.2.5.e-4+deb8u2 CVE ID : CVE-2018-16140...

Debian: DSA-4608-1: tiff security update>

Multiple integer overflows have been discovered in the libtiff library and the included tools. For the stable distribution (buster), these problems have been...

Microsoft, DHS Warn of Zero-Day Attack Targeting IE Users |

Microsoft, DHS Warn of Zero-Day Attack Targeting IE Users | | IT Security News

Morphisec Protects Customers Against Internet Explorer Scripting Zero Day |

Morphisec Protects Customers Against Internet Explorer Scripting Zero Day | | IT Security News

Stay connected

25,000FansLike
5,444FollowersFollow
1,020SubscribersSubscribe

Latest article

NASA taps startup Axiom Space for the first habitable commercial module for the Space...

NASA has selected Houston-based Axiom Space, a startup founded in 2016, to build the first commercial habitat module for the International Space...

Tether Launches New Gold-Backed Stablecoin on TRON

Tether has launched a new stablecoin backed by physical gold reserves called Tether Gold (XAU₮), according to a press release published on January...

Diet autopilot Thistle raises $5M for health food subscriptions – TechCrunch

What if it was easier to eat salad than junk food? Most diet routines take a ton of time, whether you’re cooking from...