CVE-2020-0968 : Security Advisory and Response
Learn about CVE-2020-0968, a remote code execution vulnerability in Internet Explorer's scripting engine. Find out which systems are affected and how to mitigate the risk.
A remote code execution vulnerability exists in Internet Explorer's scripting engine, known as 'Scripting Engine Memory Corruption Vulnerability'.
Understanding CVE-2020-0968
What is CVE-2020-0968?
A remote code execution vulnerability in Internet Explorer's scripting engine.
The Impact of CVE-2020-0968
This vulnerability could allow attackers to execute arbitrary code on the target system.
Technical Details of CVE-2020-0968
Vulnerability Description
The vulnerability occurs in the way the scripting engine manages objects in memory.
Affected Systems and Versions
- Internet Explorer 9 on Windows Server 2008 SP2
- Internet Explorer 11 on various Windows versions and architectures
- Internet Explorer 11 on Windows Server 2012
Exploitation Mechanism
The vulnerability can be exploited through malicious web content, leading to arbitrary code execution.
Mitigation and Prevention
Immediate Steps to Take
- Implement the security updates provided by Microsoft.
- Consider using alternative web browsers until patches are applied.
Long-Term Security Practices
- Regularly update Internet Explorer and other software to the latest versions.
- Practice safe browsing habits to minimize exposure to potential threats.
Patching and Updates
Apply the relevant security patches and updates from Microsoft to fix the vulnerability.