Virus & Security Alert
| Vulnerability Name | Severity | Advisory Date |
|---|---|---|
| February 2020 - Microsoft Releases Security Patches |
Microsoft addresses several vulnerabilities in its February security bulletin. Trend Micro Deep Security covers the following: CVE-2020-0674 - Scripting Engine Memory Corruption Vulnerability Risk Rating: Critical This remote code execution vulnerability exists in the scripting engine of Internet explorer in the way it handles objects in memory. Attackers looking to exploit this vulnerability could host a specially crafted website that contains an exploit. CVE-2020-0681 - Remote Desktop Client Remote Code Execution Vulnerability Risk Rating: Critical This remote code execution vulnerability exists in the Windows Remote Desktop Client. It exists when a user connects to a malicious server. Attackers looking to exploit this vulnerability could find ways to convince a user of a vulnerable machine to connect to a malicious server. CVE-2020-0692 - Microsoft Exchange Server Elevation of Privilege Vulnerability Risk Rating: Important This elevation of privilege vulnerability, that requires an enabled Exchange Web Services (EWS), exists in the Microsoft Exchange Server. Attackers looking to exploit this vulnerability must find a way to change Security Access Token parameters and forward that to the vulnerable Microsoft Exchange Server. Read More |
12/02/2020 |
| January 2020 - Microsoft Releases Security Patches |
Microsoft addresses several vulnerabilities in its January security bulletin. Trend Micro Deep Security covers the following: CVE-2020-0609 - Windows Remote Desktop Gateway (RD Gateway) Remote Code Execution Vulnerability Risk Rating: Critical This remote code execution, pre-authentication vulnerability exists in the Windows Remote Desktop Gateway (RD Gateway) and requires no user interaction. Attackers looking to exploit this vulnerability could send a specially crafted request via RDP. CVE-2020-0610 - Windows Remote Desktop Gateway (RD Gateway) Remote Code Execution Vulnerability Risk Rating: Critical This remote code execution, pre-authentication vulnerability exists in the Windows Remote Desktop Gateway (RD Gateway) and requires no user interaction. Attackers looking to exploit this vulnerability could send a specially crafted request via RDP. CVE-2020-0652 - Microsoft Office Memory Corruption Vulnerability Risk Rating: Important This remote code execution vulnerability exists in the improper handling of objects by Microsoft Office. Attackers looking to exploit this vulnerability must find a way for a user to open a website that contains the exploit, or to open a specially crafted file. CVE-2020-0601 - Windows CryptoAPI Spoofing Vulnerability Risk Rating: Important This spoofing vulnerability exists in the validation of Elliptic Curve Cryptography (ECC) certificates by the the Windows CryptoAPI (crypt32.dll). A successful exploitation of this vulnerability could allow man-in-the-middle (MiTM) attacks. Read More |
14/01/2020 |
| December 2019 - Microsoft Releases Security Patches |
Microsoft addresses several vulnerabilities in its December security bulletin. Trend Micro Deep Security covers the following: CVE-2019-0617 - Jet Database Engine Remote Code Execution Vulnerability Risk Rating: Important This remote code execution vulnerability exists in the Windows Jet Database engine in respect to handling objects in memory. Attackers looking to exploit this vulnerability must find a way to convince a user to open a specially crafted file. CVE-2019-1485 - VBScript Remote Code Execution Vulnerability Risk Rating: Important This remote code execution vulnerability exists in the improper handling of objects in memory by VBScript engine. Attackers looking to exploit this vulnerability must find a way to convince a user to access a malicious website where the exploit is hosted. CVE-2019-0853 - GDI Remote Code Execution Vulnerability Risk Rating: Critical This remote code execution vulnerability exists in the improper handling of objects by the Windows Graphics Device Interface (GDI). Attackers looking to exploit this vulnerability must find a way for a user to open a website that contains the exploit, or to open a specially crafted file via file-sharing. CVE-2019-1458 - Win32k Elevation of Privilege Vulnerability Risk Rating: Important This elevation of privilege vulnerability exists in the improper handling of objects by the the Win32k component in Windows. Attackers looking to exploit this vulnerability must find a way for a user to open a specially crafted application. CVE-2019-1439 - Windows GDI Information Disclosure Vulnerability Risk Rating: Important This information disclosure vulnerability exists in the improper handling of objects in memory by the Windows GDI component. Attackers looking to exploit this vulnerability must find a way for a user to execute a specially crafted document. CVE-2019-1117 - DirectWrite Remote Code Execution Vulnerability Risk Rating: Important This remote code execution vulnerability exists in the improper handling of objects in memory by the DirectWrite. Attackers looking to exploit this vulnerability must find a way for a user to execute a specially crafted document. CVE-2019-1118 - DirectWrite Remote Code Execution Vulnerability Risk Rating: Important This remote code execution vulnerability exists in the improper handling of objects in memory by the DirectWrite. Attackers looking to exploit this vulnerability must find a way for a user to execute a specially crafted document. CVE-2019-1119 - DirectWrite Remote Code Execution Vulnerability Risk Rating: Important This remote code execution vulnerability exists in the improper handling of objects in memory by the DirectWrite. Attackers looking to exploit this vulnerability must find a way for a user to execute a specially crafted document. CVE-2019-0959 - Windows Common Log File System Driver Elevation of Privilege Vulnerability Risk Rating: Important This elevation of privilege vulnerability exists in the improper handling of objects in memory by the Windows Common Log File System. Attackers looking to exploit this vulnerability must find a way for a user to execute a specially crafted application. Read More |
11/12/2019 |