Microsoft Monthly Security Update (March 2023)
Release Date:
15 Mar 2023
5997
Views
RISK: High Risk
TYPE: Operating Systems - Windows OS
Microsoft has released monthly security update for their products:
Number of 'Extremely High Risk' product(s): 0
Number of 'High Risk' product(s): 2
Number of 'Medium Risk' product(s): 5
Number of 'Low Risk' product(s): 2
Evaluation of overall 'Risk Level': High Risk
Impact
- Denial of Service
- Elevation of Privilege
- Information Disclosure
- Remote Code Execution
- Spoofing
- Security Restriction Bypass
System / Technologies affected
- Browser
- Azure
- Windows
- Extended Security Updates (ESU)
- System Center
- Microsoft Office
- Microsoft Dynamics
- Developer Tools
- Apps
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor.
Workaround for CVE-2023-23397 vulnerability:
Reduce the vulnerability of attacks by following workaround:
- Add users to the Protected Users Security Group, which prevents the use of NTLM as an authentication mechanism
- Block TCP 445/SMB outbound from the network by using a perimeter firewall, a local firewall, and via VPN settings
Vulnerability Identifier
Source
Related Link
Related Tags
Share with