Microsoft released an out-of-band security update for Internet Explorer 11 on Windows 10, Internet Explorer 11 on Windows 8.1 Update, Internet Explorer 11 on Windows 7 SP1, Internet Explorer 10 on Windows Server 2012, Internet Explorer 9, Windows Embedded Standard 2009 and Windows Embedded POSReady 2009.
The update addresses remote code execution vulnerability CVE-2018-8653 that exists in the way that the scripting engine handles objects in memory in Internet Explorer.
It is strongly advised that this update be installed as soon as possible. (Note: For Windows RT and Windows RT 8.1, this update is available through Microsoft Update only.)
CVE-2018-8653 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8653)
Security Advisory (https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8653)
I wasn't offered this update. But I don't use IE 11. Does that matter?
This is a quote from Woody Leonhard (http://www.askwoody.com/)
You can get infected by simply viewing a bad site, but only if you're using Internet Explorer.
If it is not your default browser, you can wait to patch.
Unfortunately if you click "Check for updates" in Windows 10, you might get an upgrade you aren't ready for.
I didn't check for updates manually on 1809, but KB4483235 has been downloaded and is ready to install: https://support.microsoft.com/en-us/help/4483235/december192018kb4483235osbuild17763195
There are a few reports of crashes on Windows 7 and 10 from people who installed this patch.
Quoteanyone else seen this issue with Windows 10 as well? We have had over a dozen users in the last 24 hours say their machines keep randomly restarting for no known reason!
Source: post #241514 in this thread https://www.askwoody.com/forums/topic/reported-crash-with-the-new-out-of-band-ie-fix-on-win7-kb-4483187/
while the above was posted anonymously, someone posted that they all run Malwarebytes and Windows Defender 10.0.17134.471
It's not clear if this is the same person.
That person didn't report a crash but a 2 or 3 time reboot then the computers run normally.
Installed with no issues or untoward side effects
Although I don't recall the last time I used IE, the update installed fine here also.
As always, I'll wait to patch our four Windows 7 computers until I have images of them.
I haven't had any problems with patches (since either a Jan. or Feb patch caused a major slow down) but I know the one time I don't make an image, something will go wrong and restoring a 3 - 4 week old image then updating everything would take more time than I have at the moment.
I was sent the update today. It installed without incident.
(https://www.sysnative.com/forums/images/smilies/dance.gif) Good news! Thanks for the follow-up.