Expert On Microsoft’s November 2019 Patch Tuesday Fixes IE Zero-day, 74 Flaws

With the release of the November 2019 security updates, Microsoft has released 2 advisories and updates for 74 vulnerabilities. Of these vulnerabilities, 13 are classified as Critical. The November 2019 Patch Tuesday also fixes a critical remote code execution vulnerability in Internet Explorer that was being actively exploited in the wild.


EXPERTS COMMENTS
Satnam Narang, Senior Research Engineer,  Tenable
November 14, 2019
CVE-2019-1457, which was publicly disclosed at the end of October, is a security feature bypass in Microsoft Office.
This month’s Patch Tuesday release contains updates for nearly 75 CVEs. One of the vulnerabilities, CVE-2019-1429, was first exploited in the wild as a zero day and could enable an attacker to execute arbitrary code under the same privileges of the current user. If the user has administrative rights, an attacker would be able to perform a variety of actions, such as creating a new account with f ....
[Read More >>]

If you are an expert on this topic:

Submit Your Expert Comments


In this article