Microsoft’s November 2019 Patch Tuesday arrives with a patch for an IE zero-day

From zdnet.com

Internet Explorer logo

Microsoft has released today the November 2019 Patch Tuesday security updates. This month’s updates include a patch for a vulnerability in the Internet Explorer scripting engine that hackers have been seen exploiting in the wild.

Tracked as CVE-2019-1429, Microsoft says the IE bug can allow remote code execution due to “the way that the scripting engine handles objects in memory in Internet Explorer.”

Furthermore, because the bug is in IE’s scripting engine, this impacts more than just the Internet Explorer browser.

Read more…