LandzDown Forum
Security => Security Alerts & Briefings => Topic started by: Corrine on September 10, 2019, 04:39:07 PM
-
The Microsoft September security updates have been released and consist of 80 CVEs and 2 advisories. Of these 80 CVEs, 17 are rated Critical, 62 are rated Important and 1 is rated Moderate in severity. Two are listed as publicly known and two others are listed as under active attack at the time of release.
The updates address Elevation of Privilege, Remote Code Execution, Information Disclosure, Denial of Service, Spoofing and Security Feature Bypass. They apply to the following: Microsoft Windows, Internet Explorer, Microsoft Edge (EdgeHTML-based), ChakraCore, Microsoft Office and Microsoft Office Services and Web Apps, Adobe Flash Player, Microsoft Lync, Visual Studio, Microsoft Exchange Server, .NET Framework, Microsoft Yammer, .NET Core, ASP.NET, Team Foundation Serverk and Project Rome.
Known Issues: See the Known Issues and accompanying work-around in the KB Articles for your version of Windows in the Update History:
- Windows 10 (https://support.microsoft.com/en-us/help/4498140)
- Windows 8.1 (https://support.microsoft.com/en-us/help/4009470/windows-8-1-windows-server-2012-r2-update-history)
- Windows 7 (https://support.microsoft.com/en-gb/help/4009469/windows-7-sp1-windows-server-2008-r2-sp1-update-history)
Recommended Reading: See Dustin Childs review and analysis in Zero Day Initiative — The September 2019 Security Update Review (https://www.zerodayinitiative.com/blog/2019/9/10/the-september-2019-security-update-review).
-
Thanks. Updates installed without incident (windows 10 1903 64bit)