CATEGORIES
home News

Microsoft Launches Out-of-Band Updates To Patch Serious Internet Explorer, Defender Flaws

by Shane McGlaunTuesday, September 24, 2019, 12:04 PM EDT

Microsoft has published a pair of rare security updates off its normal update cycle. The two patches are to fix serious security flaws in Microsoft Defender and Internet Explorer. The updates are rare because they are off Microsoft's steadfast schedule of releasing major security updates on the second Tuesday of every month.

windows protected

Typically, the only time that Microsoft goes off that schedule is when the patches are for critical security updates. One of the updates is for an Internet Explorer (IE) to patch a zero-day that has been exploited in the wild. This patch is a manual update, and the details of the zero-day exploit are unclear at this time. The zero-day attacks were reported to Microsoft by a member of the Google Threat Analysis Group.

This group is key in helping to find and defend against attacks online and is the same team that detected an iOS zero-day attack against the Chinese Uyghur community. Researchers call the vulnerability a remote code execution (RCE) issue. Microsoft said that the vulnerability could corrupt memory in a way that would allow an attacker to execute arbitrary code on the current user. A successful attack would give the attacker the same rights to the machine the current user has. This zero-day is tracked with CVE-2019-1367 identifier.

The second update is for a Microsoft Defender DoS bug. Microsoft says that an attacker could exploit the vulnerability to prevent a legitimate account from executing legitimate system binaries. While the attack sounds severe, Microsoft notes that to exploit this bug would require the hacker to have access to a victim machine and the ability to execute code. Microsoft released update ver 1.1.16400.2 for the Malware Protection Engine as a silent update to fix the issue. Microsoft patched another Defender bug earlier this week that caused file scans to fail.

Tags:  Microsoft, Patch, (nasdaq:msft)
SM

Shane McGlaun

Shane has been into tech since his dad brought home a Pong game when he was a toddler. A passion for gaming led to a passion for PC tech and hardware. That passion was eventually turned into a career writing about cool gadgets, computers, and automotive technology for some of the biggest publications online and in print. Shane also has a passion for the outdoors and when not writing about tech can be found hiking the trails of Colorado whilst keeping an eye open for nefarious rattlesnakes and bears.

Opinions and content posted by HotHardware contributors are their own.

TOP STORIES
Which New GPU Is For You?
More Results
KEEP INFORMED

Stay updated with the latest news and updates. Subscribe to our newsletter!

Subscribe Now
SITE

Home

Reviews

News

Blogs

Full Site

Sitemap

CATEGORIES

PC Components

Systems

Mobile

IT Infrastructure

Leisure

Videos

COMPANY

About

Advertise

News Tips

Contact

Privacy And Terms

HotTech

MORE

Accessibility

Shop

STAY CONNECTED

Twitter

Facebook

YouTube

RSS

As an Amazon and Howl Technologies Associate, HotHardware earns a commission from qualifying purchases made on this site. This site is intended for informational and entertainment purposes only. The contents are the views and opinion of the author and/or his associates. All products and trademarks are the property of their respective owners. Reproduction in whole or in part, in any form or medium, without express written permission of Hot Hardware, Inc. is prohibited. All content and graphical elements are Copyright © 1999 - 2026 Hot Hardware Inc, Inc.
All rights reserved. Privacy and Terms - Accessibility Commitment