News, tips, advice, support for Windows, Office, PCs & more. Tech help. No bull. We're community supported by donations from our Plus Members, and proud of it
Home icon Home icon Home icon Email icon RSS icon
  • Details from Kaspersky on the IE 0day

    Home Forums AskWoody blog Details from Kaspersky on the IE 0day

    • This topic has 4 replies, 3 voices, and was last updated 1 month ago.
    Viewing 2 reply threads
    • Author
      Posts
      • #2288183 Reply
        woody
        Da Boss

        Boris Larin at Kaspersky has published details on one of the two “OMG! It’s a ZERO-DAY!” security holes plugged yesterday, CVE-2020-1380 – “Scripting
        [See the full post at: Details from Kaspersky on the IE 0day]

        2 users thanked author for this post.
      • #2288371 Reply
        CAS
        AskWoody Plus

        Woody, candidly I lack the technical knowledge to understand the Kaspersky article.  I don’t know if I have a problem or not. I’m hoping that you might be able to give me some guidance.

        I am forced to use IE 11, indirectly, because I am a long time user of Quicken. When Quicken downloads my transactions it does so using IE to connect to my financial institutions. I never use IE as a browser. My default browser is Firefox ESR but Quicken will not work with Firefox. As an aside, Quicken has issues with Edge, too.

        I do not have a MS account, and connect to the internet using a local account. My patching is current through July 2020. My version of Win 10 is 1909 OS build 18363.959.

        CAS

      • #2288503 Reply
        Paul T
        AskWoody MVP

        To exploit the vulnerability you need to visit a malicious web site with IE11.
        If your only use of IE11 is for Quicken to connect to your financial institution, there is very little chance that you will visit a malicious site.

        If you are really concerned you could do several things.

        1. Don’t download transactions in Quicken until Windows is patched.
        2. Backup before using Quicken and AV scan after use.
        3. Backup your machine and install the patch manually.

        cheers, Paul

        1 user thanked author for this post.
        CAS
        • #2288595 Reply
          CAS
          AskWoody Plus

          Thank you for your reply, Paul. I’m going to backup my computer and then install the two IE patches, manually. (Better safe than sorry.) I’ll cross my fingers and hope the patches don’t cause chaos with my computer.

          Stay safe.

          CAS

           

        • #2288825 Reply
          CAS
          AskWoody Plus

          After giving your options another look I decided to do nothing, Paul. Given my circumstances, this is a perfect case for the application of Occam’s Razor.

           

          CAS

          1 user thanked author for this post.
    Viewing 2 reply threads

    Please follow the -Lounge Rules- no personal attacks, no swearing, and politics/religion are relegated to the Rants forum.

    Reply To: Details from Kaspersky on the IE 0day

    You can use BBCodes to format your content.
    Your account can't use Advanced BBCodes, they will be stripped before saving.