Microsoft has released its monthly Patch Tuesday update that includes a total of 10 security bulletins, five the flaws addressed by the updates are zero-day vulnerabilities affecting Internet Explorer, Edge, Windows and Office products.
They could be exploited by a remote attacker to execute commands on the victim’s system. Security patches for the Microsoft zero-day vulnerabilities are included in MS16-118, MS16-119, MS16-120, MS16-121 and MS16-126.
The Microsoft zero-day have been reported by security experts from Google, Kaspersky, Proofpoint and Austria’s military CERT (MilCERT), there is no information about the motivation behind the attacks that exploited the flaws.
Below the list of Microsoft Zero-Day Vulnerabilities fixed by Microsoft in the October Patch Tuesday update.
(Security Affairs – Microsoft zero-day flaws, hacking)