14 Aug 2019

Shades of BlueKeep: Wormable Remote Desktop Bugs Top August Patch Tuesday List

As part of August’s Patch Tuesday, Microsoft made fixes for 93 security vulnerabilities available. 29 issues are critical, including four remote code-execution (RCE) flaws in Remote Desktop Services (RDS) and one critical RCE bug in Microsoft Word. Two of the RDS flaws stand out in particular, as they are “wormable,”

Read More
14 Aug 2019

22 Critical Flaws Patched in Adobe Photoshop

As part of this month’s patch Tuesday, Adobe has released fixes for 119 security vulnerabilities in its products, 25 of which are high severity flaws. Adobe Photoshop CC accounted for 22 critical bugs. Adobe warns that exploitation of these issues “could lead to arbitrary code execution in the context of

Read More
10 Jul 2019

July 2019 Patch Tuesday: Microsoft plugs two actively exploited zero-days

As part of this month’s Patch Tuesday, Microsoft issued fixes for 78 vulnerabilities, including 15 critical flaws of which two are actively being exploited in cyber campaigns. The two zero-days are tracked as CVE-2019-0880 and CVE-2019-1132 and both are privilege escalation flaws. The former flaw affects all modern Windows versions, while the

Read More
12 Jun 2019

Microsoft’s June 2019 Patch Tuesday fixes many of SandboxEscaper’s zero-days

As part of Patch Tuesday, Microsoft has issued fixed for 88 vulnerabilities in its products, 21 of which were critical security flaws. Patches were also released for the following 4 zero-days that have been released by Windows exploit developer SandboxEscaper since May. CVE-2019-1069 – A local privilege escalation (LPE) flaw

Read More
15 May 2019

Microsoft Patches ‘Wormable’ Flaw in Windows XP, 7 and Windows 2003

As part of this month’s patch Tuesday, Microsoft released a critical patch for CVE-2019-0708, a “wormable” vulnerability affecting Windows 7, Windows Server 2008 R2, and Windows Server 2008 and various older operating systems. Due to the extraordinary severity of the flaw, Microsoft also released versions of the patch for otherwise

Read More
10 Apr 2019

It’s raining patches, Hallelujah! Microsoft and Adobe put out their latest major fixes

As part of this month’s patch Tuesday, Microsoft and Adobe have issued a total of 117 fixes for security flaws. Microsoft released patches for 74 vulnerabilities, 15 of which are critical flaws. Two of the Windows vulnerabilities are zero-days that have been actively exploited in the wild. The flaws, classified

Read More
13 Mar 2019

Microsoft Patch Tuesday: 64 Vulnerabilities Patched, 2 Under Attack

As part of Patch Tuesday, Microsoft has released mitigations for 64 security vulnerabilities affecting various products including Microsoft Windows, Microsoft Office, Internet Explorer, Edge and Exchange Server. The patches covered 17 critical flaws and 45 important ones. Two of  the vulnerabilities have been actively exploited in the wild. One of

Read More
09 Jan 2019

Remote Code Execution Bugs Are Primary Focus of January Patch Tuesday

Microsoft has fixed a total of 49 vulnerabilities as part of January’s Patch Tuesday, including 7 critical, 40 important and 2 moderate flaws. Almost half of all patched bugs were remote code execution (RCE) vulnerabilities, eleven of which involved the Jet Database Engine. However, some experts note that when it

Read More