Specifically, this IE flaw is located in the scripting engine of the browsers. Microsoft has the vulnerability has already been exploited in the wild. Named CVE-2019-1429, Microsoft describes the big as a remote execution flaw caused by “the way that the scripting engine handles objects in memory in Internet Explorer.” As this is a scripting bug, it extends beyond Internet Explorer and also into Office apps to help them display web content. Hackers are able to create nefarious Office documents with malicious code embedded in them. Google Project Zero, Resecurity, and iDefense Labs have all reported an active exploit of the vulnerability. Microsoft was told about the attacks, but no information on the specific details has been given. Elsewhere on November Patch Tuesday, Microsoft has fixed a total of 74 bugs that are in nine of its products or services.
Full November Patch Tuesday Fixes
