New Delhi, August 12
Microsoft has fastened 120 vulnerabilities with its new safety patch, together with two zero-day bugs in Windows working system and Internet Explorer that have been being exploited by the hackers.
Microsoft has launched an August 2020 safety replace that has patched 120 vulnerabilities throughout 13 totally different merchandise, from Edge to Windows, and from SQL Server to the .NET Framework.
Among the vulnerabilities fastened this month, 17 bugs obtained the best severity score of “Critical,” and there are additionally two zero-days, ZDNet reported on Tuesday.
The first zero-day bug often called CVE-2020-1464 was fastened as a part of the brand new safety replace.
Microsoft stated that an attacker can exploit this bug and have Windows incorrectly validate file signatures.
The second zero-day, tracked as CVE-2020-1380, resided within the scripting engine that ships with Internet Explorer.
Microsoft obtained a report from cybersecurity agency Kaspersky that hackers discovered a distant code execution (RCE) bug within the web explorer scripting engine and “were abusing it in real-world attacks”.
The bug, now fastened, will be exploited by luring customers on malicious websites, or by sending them booby-trapped Office information. — IANS