{"id":16279,"date":"2019-09-10T13:17:04","date_gmt":"2019-09-10T21:17:04","guid":{"rendered":"https:\/\/www.palada.net\/index.php\/2019\/09\/10\/news-10021\/"},"modified":"2019-09-10T13:17:04","modified_gmt":"2019-09-10T21:17:04","slug":"news-10021","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2019\/09\/10\/news-10021\/","title":{"rendered":"Patch Tuesday, September 2019 Edition"},"content":{"rendered":"

Credit to Author: BrianKrebs| Date: Tue, 10 Sep 2019 20:09:11 +0000<\/strong><\/p>\n

Microsoft<\/strong> today issued security updates to plug some 80 security holes in various flavors of its Windows<\/strong> operating systems and related software. The software giant assigned a “critical” rating to almost a quarter of those vulnerabilities, meaning they could be used by malware or miscreants to hijack vulnerable systems with little or no interaction on the part of the user.<\/p>\n

\"\"Two of the bugs quashed in this month’s patch batch (CVE-2019-1214<\/a> and CVE-2019-1215<\/a>) involve vulnerabilities in all supported versions of Windows that have already been exploited in the wild. Both are known as “privilege escalation” flaws in that they allow an attacker to assume the all-powerful administrator status on a targeted system. Exploits for these types of weaknesses are often deployed along with other attacks that don’t require administrative rights.<\/p>\n

September also marks the fourth time this year Microsoft has fixed critical bugs in its Remote Desktop Protocol (RDP) feature, with four critical flaws being patched in the service. According to security vendor Qualys<\/a>, these Remote Desktop flaws were discovered in a code review by Microsoft, and in order to exploit them an attacker would have to trick a user into connecting to a malicious or hacked RDP server.<\/p>\n

Microsoft also fixed another critical vulnerability<\/a> in the way Windows handles link files ending in “.lnk” that could be used to launch malware on a vulnerable system if a user were open a removable drive or access a shared folder with a booby-trapped .lnk file on it.<\/p>\n

Shortcut files \u2014 or those ending in the \u201c.lnk\u201d extension \u2014 are Windows files that link easy-to-recognize icons to specific executable programs, and are typically placed on the user\u2019s Desktop or Start Menu. It’s perhaps worth noting that poisoned .lnk files<\/a> were one of the four known exploits bundled with Stuxnet<\/a>, a multi-million dollar cyber weapon that American and Israeli intelligence services used to derail Iran’s nuclear enrichment plans<\/a>\u00a0roughly a decade ago.<\/p>\n

In last month’s Microsoft patch dispatch<\/a>, I ruefully lamented the utter hose job inflicted on my Windows 10<\/strong> system by the July round of security updates from Redmond. Many readers responded by saying one or another updates released by Microsoft in August similarly caused reboot loops or issues with Windows repeatedly crashing.<\/p>\n

As there do not appear to be any patch-now-or-be-compromised-tomorrow flaws in the September patch rollup, it’s probably safe to say most Windows end-users would benefit from waiting a few days to apply these fixes.\u00a0<\/span><\/p>\n

Very often fixes released on Patch Tuesday have glitches that cause problems for an indeterminate number of Windows systems. When this happens, Microsoft then patches their patches to minimize the same problems for users who haven\u2019t yet applied the updates, but it sometimes takes a few days for Redmond to iron out the kinks.<\/p>\n

The trouble is, Windows 10 by default will install patches and reboot your computer whenever it likes.\u00a0Here\u2019s a tutorial<\/a>\u00a0on how to undo that.\u00a0For all other Windows OS users, if you\u2019d rather be alerted to new updates when they\u2019re available so you can choose when to install them, there\u2019s a setting for that in\u00a0Windows Update<\/strong>.<\/p>\n

Most importantly, please have some kind of system for backing up your files\u00a0before<\/em>\u00a0applying any updates. You can use third-party software to do this, or just rely on the options built into Windows 10. At some level, it doesn\u2019t matter. Just make sure you\u2019re backing up your files, preferably following\u00a0the 3-2-1 backup rule<\/a>.<\/p>\n

Finally, Adobe<\/strong> fixed two critical bugs in its Flash Player<\/strong> browser plugin, which is bundled in Microsoft’s IE\/Edge and Chrome (although now hobbled by default in Chrome).\u00a0Firefox forces users with the Flash add-on installed to click in order to play Flash content; instructions for disabling or removing Flash from Firefox are\u00a0here<\/a>. Adobe will stop supporting Flash at the end of 2020.<\/p>\n

As always, if you experience any problems installing any of these patches this month, please feel free to leave a comment about it below; there\u2019s a good chance other readers have experienced the same and may even chime in here with some helpful tips.<\/p>\n

https:\/\/krebsonsecurity.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

<\/p>\n

Credit to Author: BrianKrebs| Date: Tue, 10 Sep 2019 20:09:11 +0000<\/strong><\/p>\n

Microsoft today issued security updates to plug some 80 security holes in various flavors of its Windows operating systems and related software. The software giant assigned a “critical” rating to almost a quarter of those vulnerabilities, meaning they could be used by malware or miscreants to hijack vulnerable systems with little or no interaction on the part of the user.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10643,10642],"tags":[22917,11283,22918,13457,20070,16936],"class_list":["post-16279","post","type-post","status-publish","format-standard","hentry","category-independent","category-krebs","tag-lnk","tag-adobe-flash-player","tag-microsoft-patch-tuesday-september-2019","tag-qualys","tag-stuxnet","tag-time-to-patch"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/16279","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=16279"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/16279\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=16279"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=16279"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=16279"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}