Microsoft has released an advisory for the users of Internet Explorer to install an emergency patch. Microsoft has warned users that a security flaw in several versions of IE can turn malicious for the users. The loophole in the Internet Explorer can be used by the hackers to run harmful code on the device remotely. It is fierce as users can be tricked to visit a malicious internet site by merely clicking an email link.
Microsoft further added that the attacker could even acquire the control of the user’s PC by taking advantage of the security flaw. The tech giant also revealed that attackers are exploiting the vulnerability. The company did not disclose the details of the security flaw though.
Internet Explorer Users Warned to Install the patch
According to reports, more than 7 percent of the users were using the affected versions of IE, 9, 10, and 11. All the supported versions of Windows like Windows 8.1, Window 10 are affected by this security threat.
Users are advised to install these patches out of the band
The security patches are released out of schedule. The Internet Explorer patch is exceptionally critical as it is related to the vulnerability that attackers are exploiting actively. The attackers can install malware on the machines remotely.
CVE-2019-1367- Code Execution Security Flaw in Internet Explorer
The IE security flaw is recorded CVE-2019-1367, which is relatively a code execution vulnerability. The fault is in the way the MS scripting engine manages objects in Internet Explorer memory. The update should be installed automatically with the Malware Protection Engine within 48 hours. Most users can install it with windows update.
CVE-2019-1255 Denial of Service Vulnerability Flaw Update also released
Microsoft also released another update concerning the denial of service vulnerability found in the Defender antimalware engine. It is an antivirus system that comes with windows versions 8 and above.
Internet Explorer and Windows users should install the patches to make sure they do not fall prey of the attackers. The malware attackers can pose a serious threat to the systems.