Patch Tuesday
Microsoft's February 2020 Patch Tuesday

This is the February 2020 patch Tuesday for Microsoft and also the first day Windows 7 users won’t receive free security updates. Be nice today with your Windows Administrators! More of Microsoft’s February 2020 Patch Tuesday Information below!

With the release of the February 2020 security updates, Microsoft has released one advisory for Flash Player and fixes for 99 vulnerabilities in Microsoft products. Of these vulnerabilities, 10 are classified as Critical, 87 as Important, and 2 as Moderate.

Included in this release is a security update for the CVE-2020-0674 Internet Explorer zero-day vulnerability that was being actively exploited in the wild.

Users should install these security updates as soon as possible to protect Windows from known security risks. Don’t skip Microsoft’s February 2020 Patch Tuesday! Check out our Services page to learn how we can help!

Fix for Internet Explorer zero-day vulnerability released

In the middle of January 2020, Microsoft released an advisory about an Internet Explorer zero-day vulnerability (CVE-2020-0674) that was publicly disclosed and being actively exploited by attackers.

With today’s Patch Tuesday updates, Microsoft has released a formal security update for the ‘CVE-2020-0674 | Scripting Engine Memory Corruption Vulnerability‘ that fixes the vulnerability without having to use the previously recommended mitigations.

Three other vulnerabilities publicly disclosed:

In addition to the CVE-2020-0674 IE vulnerability, Microsoft states that three other vulnerabilities were publicly disclosed but not exploited in the wild.

These vulnerabilities are:

  • CVE-2020-0683 – Windows Installer Elevation of Privilege Vulnerability
  • CVE-2020-0686 – Windows Installer Elevation of Privilege Vulnerability
  • CVE-2020-0706 – Microsoft Browser Information Disclosure Vulnerability