Patch Tuesday
23% of Windows in Use is Old, Insecure Win7 or XP
Windows 7 and XP are obsolete, but that hasn’t stopped almost a quarter of Windows users using them. It’s a security nightmare waiting to happen ...
Microsoft Patches 17-Year-Old Windows Vulnerability with CVE 10.0 Score
Microsoft patched a serious Windows DNS Server vulnerability with a CVE score of 10.0, and the latest indication is that it hasn’t been used in the wild in any current attacks. Microsoft ...
Severe Windows 10 Vulnerabilities Fixed Ahead of Patch Tuesday
Microsoft released an out-of-band update for Windows 10 to patch a couple of high-severity vulnerabilities affecting the Windows Codecs Library that would allow attackers to execute arbitrary code. Windows 10 users are ...
May 2020 Patch Tuesday – 111 Vulns, 16 Critical, SharePoint, VS Code, Adobe Patches
Continuing the trend of large Microsoft Patch Tuesdays, this month’s addresses 111 vulnerabilities with 16 of them labeled as Critical. The 16 Critical vulnerabilities cover SharePoint, Browsers, Scripting Engines, Media Foundation, Microsoft ...
April 2020 Patch Tuesday: Microsoft fixes 4 actively exploited zero-day bugs
Yesterday, for the April 2020 Patch Tuesday, Microsoft revealed fixes for 113 vulnerabilities, including 4 security updates for vulnerabilities that are actively exploited. The patches apply to the following Microsoft software: • ...
VERT Threat Alert: April 2020 Patch Tuesday Analysis
Today’s VERT Alert addresses Microsoft’s April 2020 Security Updates. VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-880 on Wednesday, April 15th. In-The-Wild & Disclosed CVEs CVE-2020-0935 ...
April 2020 Patch Tuesday – 113 Vulns, 19 Critical, Zero-Day Patches, SharePoint, Adobe ColdFusion
This month’s Microsoft Patch Tuesday addresses 113 vulnerabilities with 19 of them labeled as Critical. The 19 Critical vulnerabilities cover Adobe Font Manager Library (0-day), SharePoint, Hyper-V, Scripting Engines, Media Foundation, Microsoft ...
Microsoft Finds Adobe Type Manager Library Exploit Used in the Wild; Patch Incoming
A zero-day Adobe Type Manager Library exploit is now wielded in limited, targeted attacks against Windows users, technically allowing for remote code execution. The good news is that Microsoft knows about the ...
Microsoft Windows SMBv3 Remote Code Execution Vulnerability (CVE-2020-0796)
This Patch Tuesday, Microsoft disclosed a remote code execution vulnerability in SMB 3.1.1 (v3) protocol. Even though initial release of the Patch Tuesday did not mention this vulnerability, details of the issue ...
March 2020 Patch Tuesday – 115 Vulns, 26 Critical, Microsoft Word and Workstation Patches
This month’s Microsoft Patch Tuesday addresses 115 vulnerabilities with 26 of them labeled as Critical. Of the 26 Critical vulns, 17 are for browser and scripting engines, 4 are for Media Foundation, ...
