No fix yet, but #Microsoft released an advisory for active attacks in #IE. Restrict access to JScript.dll as a workaround. Hurray for Friday afternoon releases. https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV200001 …
-
-
According to the advisory, it looks like it's just IE, not Edge.
-
Hey
@msftsecresponse ,@n0x08 Can we get a CVE on this? As I mentioned before CVEs are not secrets, and they are not to be disclosed only with the release of a software update. I get that MSRC uses CVE for tracking now, but that doesn't change that we need 'em IMMEDIATELY. - 1 more reply
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.