Security vulnerabilities

Microsoft fixes 120 security vulnerabilities in Windows, Edge, SQL Server and more

Microsoft has released a new security patch to fix 120 security vulnerabilities in Windows, Microsoft Edge, .NET Framework, and SQL Server via August 2020 security update. The Windows manufacturer has received a report from Kaspersky, which reveals the fact that hackers found a remote code execution bug in the Internet Explorer scripting engine. The 120 security vulnerabilities include two zero-day bugs in Windows operating system and Interner Explorer that are currently being exploited by hackers.

Microsoft announced that 17 bugs among the 120 security vulnerabilities received the highest severity rating of Critical along with other vulnerabilities. It also included two zero-days bug. You should note that the first zero-day bug also called CVE-2020-1464 was fixed as part of the new security update.

The company revealed that the attacker could take advantage of this bug and Windows will incorrectly validate file signatures. The second zero-day bug, which is being tracked as CVE-2020-1380 was housed in the scripting engine, which ships with the Internet Explorer.

There were reports that hackers found a remote code execution (RCE) bug in the IE scripting engine, which was mainly used to abuse people in real-world attacks. The latest security patch has fixed the bug, which is potentially dangerous for the proper functioning of the system. Moreover, the bug could attract users to malicious sites or could deliver office files with tempting titles.

If a user unknowingly opens the files, then it could lead to hacking or even make the system unusable. We hope that the latest bug fix for the 120 security vulnerabilities will help you to perform computing safely.

Comments

No comments yet. Why don’t you start the discussion?

Leave a Reply

Your email address will not be published. Required fields are marked *