First published: Wed Apr 15 2020(Updated: )
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0966.
Credit: secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Internet Explorer | =9 | |
Microsoft Windows Server 2008 | =sp2 | |
Microsoft Internet Explorer | =11 | |
Microsoft Windows 10 | ||
Microsoft Windows 10 | =1607 | |
Microsoft Windows 10 | =1709 | |
Microsoft Windows 10 | =1803 | |
Microsoft Windows 10 | =1809 | |
Microsoft Windows 10 | =1903 | |
Microsoft Windows 10 | =1909 | |
Microsoft Windows 7 | =sp1 | |
Microsoft Windows 8.1 | ||
Microsoft Windows RT 8.1 | ||
Microsoft Windows Server 2008 | =r2-sp1 | |
Microsoft Windows Server 2012 | ||
Microsoft Windows Server 2012 | =r2 | |
Microsoft Windows Server 2016 | ||
Microsoft Windows Server 2019 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-0967 is a remote code execution vulnerability in the VBScript engine in Microsoft Internet Explorer.
CVE-2020-0967 has a severity rating of 8.8 (critical).
Microsoft Internet Explorer 9 and 11 on various Windows operating systems are affected by CVE-2020-0967.
To fix CVE-2020-0967, Microsoft has released security updates. Apply the latest updates for affected software.
You can find more information about CVE-2020-0967 on the Microsoft Security Guidance Advisory page.