Microsoft Monthly Security Update (Aug 2019)
RISK: High Risk
TYPE: Operating Systems - Windows OS
Microsoft has released monthly security update for their products:
Vulnerable Product | Severity | Impacts | Notes |
Microsoft Office | Moderately Critical | Remote Code Execution Elevation of Privilege Spoofing Information Disclosure | |
Browser | Moderately Critical | Security Restriction Bypass Remote Code Execution Information Disclosure | |
Developer Tools | Moderately Critical | Remote Code Execution Elevation of Privilege | |
Microsoft Dynamics | Moderately Critical | Elevation of Privilege | |
Windows | Highly Critical | Data Manipulation Security Restriction Bypass Elevation of Privilege Denial of Service Remote Code Execution Information Disclosure | Two critical vulnerabilities in Remote Desktop Services (RDS):
[Updated 21-Aug-2019]: We noticed a Proof-of-Concept exploit software for CVE-2019-1181 and CVE-2019-1182 was being developed. It potentially might develop into a worm-like outbreak in the Internet. As such, the criticality level is changed from Moderately to Highly. |
Number of 'Extremely Critical' product(s): 0
Number of 'Highly Critical' product(s): 1
Number of 'Moderately Critical' product(s): 4
Evaluation of overall 'Criticality Level': Highly Critical
Impact
- Denial of Service
- Elevation of Privilege
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
- Data Manipulation
System / Technologies affected
- Microsoft Office
- Browser
- Developer Tools
- Microsoft Dynamics
- Windows
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor.
Vulnerability Identifier
Source
Related Link
- /my_url/en/blog/19081501
- https://msrc-blog.microsoft.com/2019/08/13/patch-new-wormable-vulnerabilities-in-remote-desktop-services-cve-2019-1181-1182/
- https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/312890cc-3673-e911-a991-000d3a33a34d
- https://s.tencent.com/research/bsafe/778.html
Share with