It’s been a rough week for Microsoft’s browser.
Yesterday, Feb. 19, the company released Security advisory 2934088 for a zero-day threat to Internet Explorer 9 and 10. All other versions of IE are reportedly not vulnerable. Microsoft reports that there are active, targeted attacks, but a patch for the exploit is still in the works. In the meantime, Microsoft has posted a fixit on the advisory’s page.
Today, Microsoft posted an update for Security advisory 2755801, originally published Sept. 21, 2012. The new patch adds fixes Adobe recently applied to Adobe Flash Player. Note that Flash is effectively built into Windows 8/8.1 versions of Internet Explorer 10 and 11. Flash updates must come from Microsoft.
Those who don’t have automatic updates set will see the patch as KB 2934802. If you don’t see it in Windows Update, click the Check for updates link. Note: Because KB 2934802 is not a cumulative update, Microsoft states that cumulative KB 2916626 (released Jan. 14) must be installed first....