Internet Explorer security update KB4483187 released

[harlan4096]

Microsoft released a security update for Internet Explorer on December 19, 2018 that patches a security issue in the scripting engine.

Microsoft describes the issue in the following way:

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer.

The issue is filed under CVE-2018-8653. The Security Advisory page for CVE-2018-8653 offers additional details. The vulnerability could be used by attackers to execute arbitrary code in the user context if exploited successfully.

If a user has administrative rights, the attacker would get these rights as well; this would allow the attacker to install and run software, and modify system settings among other things.

Full reading: https://www.ghacks.net/2018/12/19/intern...-released/