There has been a common vulnerabilities and exposures (CVE) fixing trend in 2020 Patch Tuesdays. For instance, Microsoft has patched roughly more than 100 vulnerabilities per month in recent bulletins. Similarly, the July update issues 123 patches, including fixes in RemoteFX vGPU, Microsoft Office, Microsoft Windows, OneDrive, and Jet Database Engine.
The patches address 18 vulnerabilities rated Critical and 105 that were rated Important in severity. A total of eight CVEs were disclosed through Trend Micro’s Zero Day Initiative (ZDI) program.
While none of the vulnerabilities were listed as under active attack at the time of release, among the bugs addressed this month is the “wormable” Critical-rated remote code execution (RCE) vulnerability in Windows Domain Name System (DNS) Servers (designated as CVE-2020-1350). An affected system that receives a specially crafted request could allow unauthenticated code execution at the level of a Local System account.
Since Windows servers configured as DNS servers are usually also domain controllers, users should prioritize patching this flaw. The update addresses the vulnerability by modifying how Windows DNS servers handle requests.
This month’s security releases include a fix for an RCE vulnerability (CVE-2020-1147) in Microsoft .NET Framework, Visual Studio, and collaborative platform SharePoint. Users with affected installations are urged to immediately apply the update to address potential risks.
The vulnerability is concerned with the way the source markup of XML file input is validated. If left unpatched, an attacker could exploit the vulnerability and run arbitrary code in the context of the process responsible for the deserialization of XML content.
CVE-2020-1025 is a Critical-rated elevation of privilege (EoP) vulnerability that occurs in SharePoint and Skype for Business servers. The flaw exists when these kinds of software mishandle OAuth token validation. An attacker who successfully modifies the token can bypass authentication and gain improper access. The fix addresses how Microsoft SharePoint Server and Skype for Business Server check tokens.
As with all patch releases, we advise users to stay on top of these updates. Vulnerability management and system updates are important in protecting systems against publicly reported exploits, as well as old vulnerabilities and resurfacing malware variants. Organizations are recommended to install security solutions that can protect their systems from attacks that abuse these vulnerabilities.
Trend Micro
With TippingPoint® Next-Generation Intrusion Prevention System (NGIPS), customers are protected against threats and attacks through the following rules:
The post Patch Tuesday: Fixes for ‘Wormable’ Windows DNS Server RCE, SharePoint Flaws appeared first on .
The head of counterintelligence for a division of the Russian Federal Security Service (FSB) was… Read More
For nearly a dozen years, residents of South Carolina have been kept in the dark… Read More
The U.S. government is warning that “smart locks” securing entry to an estimated 50,000 dwellings… Read More
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) said today it is investigating a breach… Read More
On April 9, Twitter/X began automatically modifying links that mention “twitter.com” to read “x.com” instead.… Read More
If only Patch Tuesdays came around infrequently — like total solar eclipse rare — instead… Read More