Microsoft has released an Out-of-Band security update addressing CVE-2019-1255 which relates to a Microsoft Defender Denial of Service Vulnerability and CVE-2019-1367, a Scripting Engine Memory Corruption Vulnerability. CVE-02019-1255 is rated Important and CVE 2019-1367 is rated Critical in severity.
The updates address Denial of Service and Remote Code Execution. They apply to the following: Windows Defender, Microsoft Security Essentials, Internet Explorer versions 9, 10 and 11 as well as Microsoft Forefront Endpoint Protection 2010, Microsoft System Center Endpoint Protection, Microsoft System Center 2012 R2 Endpoint Protection Microsoft System Center 2012 Endpoint Protection.
For more information about the updates released today, see https://portal.msrc.microsoft.com/en-us/security-guidance/summary. Updates can be sorted by OS from the search box. Information about the updates is available from the Windows Update History:
Security Updates Guide
The updates address Denial of Service and Remote Code Execution. They apply to the following: Windows Defender, Microsoft Security Essentials, Internet Explorer versions 9, 10 and 11 as well as Microsoft Forefront Endpoint Protection 2010, Microsoft System Center Endpoint Protection, Microsoft System Center 2012 R2 Endpoint Protection Microsoft System Center 2012 Endpoint Protection.
For more information about the updates released today, see https://portal.msrc.microsoft.com/en-us/security-guidance/summary. Updates can be sorted by OS from the search box. Information about the updates is available from the Windows Update History:
Security Updates Guide