Microsoft Releases Security Updates Addressing 79 Vulnerabilities
Microsoft has announced its monthly security updates, releasing patches for a total of 79 CVE-listed vulnerabilities across its software platforms. This month’s updates come with particular urgency as they address a critical wormable vulnerability that can enable malware to spread autonomously from one computer to another without requiring user interaction.
Of these 79 vulnerabilities, 18 have been classified as critical, with the remaining categorized as important. Notably, two of these vulnerabilities were already publicly known, and during their release, one was identified as being actively exploited in the wild. Organizations utilizing Microsoft products—ranging from Windows operating systems to Microsoft Office—are urged to apply these updates promptly to mitigate the risk of attacks.
Among the key vulnerabilities addressed is a severe flaw (CVE-2019-0708) in Remote Desktop Services, which has the potential to be exploited remotely by sending specially crafted requests over the RDP protocol. This wormable vulnerability poses a significant threat similar to the WannaCry ransomware incident that impacted organizations globally in 2017. According to Microsoft’s advisory, an attacker could execute arbitrary code on the target system without any user interaction, thereby gaining elevated privileges and potentially compromising sensitive data and system integrity.
Though there have been no recorded instances of the vulnerability being exploited to date, security experts anticipate that it could soon be targeted by malicious actors. In a proactive move, Microsoft has not only released patches for supported versions of Windows, such as Windows 7 and Windows Server 2008, but has also provided updates for legacy systems, including Windows 2003 and Windows XP. As an interim measure, the company advises Windows Server users to block TCP port 3389 and enable Network Level Authentication to thwart potential exploit attempts.
Aside from the Remote Desktop flaw, another significant vulnerability (CVE-2019-0863) has been identified in Windows Error Reporting, which could allow a low-privileged remote attacker to execute arbitrary code with kernel mode privileges. This poses a considerable threat as it could enable unauthorized users to install programs, delete data, or create new administrative accounts, thereby compromising system security.
Additionally, a vulnerability in the Skype for Android app (CVE-2019-0932) has come to light, which could enable attackers to eavesdrop on conversations if they initiate a call to a device with the app installed and paired with a Bluetooth device. The ramifications of such an exploit underscore the increasing complexity of cybersecurity threats facing individuals and organizations alike.
The majority of critical vulnerabilities this month primarily affect Windows 10 and Server editions, impacting components like the Chakra Scripting Engine, Windows Graphics Device Interface, and various Microsoft Office applications. Important-rated vulnerabilities similarly pose risks that could lead to remote code execution, privilege escalation, information disclosure, and denial of service attacks.
Business owners and IT administrators are strongly encouraged to apply the latest security patches without delay to reduce exposure to these vulnerabilities. To install updates, users can navigate to Settings → Update & Security → Windows Update on their computers or opt for manual installations as necessary.
In addition to Microsoft’s updates, Adobe has also released security patches addressing 87 vulnerabilities across several products, urging users to update their software to bolster cyber defenses. As cyber threats evolve, staying informed and proactive in implementing security measures remains paramount for maintaining the integrity of corporate environments.
An understanding of the MITRE ATT&CK framework can further illuminate the potential tactics and techniques that could be employed in exploiting these vulnerabilities—ranging from initial access through to privilege escalation. By honing in on these methods, organizations can better prepare for and defend against imminent threats in the cybersecurity landscape.