{"id":15055,"date":"2019-04-09T19:17:01","date_gmt":"2019-04-10T03:17:01","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2019\/04\/09\/news-8804\/"},"modified":"2019-04-09T19:17:01","modified_gmt":"2019-04-10T03:17:01","slug":"news-8804","status":"publish","type":"post","link":"https:\/\/www.palada.net\/index.php\/2019\/04\/09\/news-8804\/","title":{"rendered":"Patch Tuesday Lowdown, April 2019 Edition"},"content":{"rendered":"

Credit to Author: BrianKrebs| Date: Wed, 10 Apr 2019 00:07:33 +0000<\/strong><\/p>\n

Microsoft today released fifteen software updates to fix more than 70 unique security vulnerabilities in various flavors of its\u00a0Windows<\/strong> operating systems and supported software, including at least two zero-day<\/a> bugs. These patches apply to Windows<\/strong>, Internet Explorer<\/strong> (IE) and Edge<\/strong> browsers, Office,<\/strong> Sharepoint<\/strong> and Exchange<\/strong>. Separately, Adobe<\/strong> has issued security updates for Acrobat\/Reader<\/strong> and\u00a0Flash Player<\/strong>.<\/p>\n

\"\"According to security firm Rapid 7<\/a>, two of the vulnerabilities — CVE-2019-0803<\/a> and CVE-2019-0859<\/a> — are already being exploited in the wild. They can result in unauthorized elevation of privilege, and affect all supported versions of Windows.<\/p>\n

“An attacker must already have local access to an affected system to use these to gain kernel-level code execution capabilities,” Rapid7 researcher Greg Wiseman<\/strong> observed. “However, one of the 32 Remote Code Execution (RCE) vulnerabilities patched today could potentially be used with them in an exploit chain to obtain full control of a system.”<\/p>\n

Aside from these zero-day privilege escalation flaws, Wiseman said, it’s a fairly standard Patch Tuesday.<\/p>\n

“Which of course still means that there are bugs that should be patched as soon as possible, such as the eight vulnerabilities classified as critical in the scripting engine used by Microsoft browsers, and CVE-2019-0822<\/a> (an RCE in Microsoft Office that can be exploited by convincing a user to open a malicious file).”<\/p>\n

\"\"Adobe’s Patch Tuesday includes security updates for its Flash Player and AIR software<\/a>,\u00a0 as well as\u00a0Adobe Reader and Acrobat.<\/a><\/p>\n

Flash updates are installed along with other monthly Windows patch rollups for consumers, and auto-installed by Google Chrome, but users may need to reboot the operating system (in the case of IE\/Edge) or the browser (in Chrome) for the new updates to take effect.<\/p>\n

Adobe’s actions also sound the death knell for Adobe Shockwave Player<\/strong>, which has at long last reached end-of-life.<\/p>\n

That means no more security updates for Shockwave, which has always been something of an ugly stepchild to Flash. That is to say, Shockwave never really got the security attention Flash has received<\/a> but nevertheless has been just as vulnerable and often lagging months or years behind Flash in terms of updates<\/a>.<\/span><\/p>\n

Chris Goettl<\/strong>, director of product management and security for security firm\u00a0Ivanti<\/a>, said<\/a> Windows users need to get any existing Shockwave installations out of their environments now.<\/p>\n

“There are 7 vulnerabilities that are going to be vulnerable for the majority of Shockwave installs still in existence,” Goettl said. “You can bet an exploit is imminent there.”<\/p>\n

Standard advice:\u00a0Staying up-to-date on Windows patches is good. Updating only after you\u2019ve backed up your important data and files is even better. A good backup means you\u2019re not pulling your hair out if the odd buggy patch causes problems booting the system.<\/p>\n

Windows 10<\/strong>\u00a0likes to install patches all in one go and reboot your computer on its own schedule. Microsoft doesn\u2019t make it easy for Windows 10 users to change this setting,\u00a0but it is possible<\/a>. For all other Windows OS users, if you\u2019d rather be alerted to new updates when they\u2019re available so you can choose when to install them, there\u2019s a setting for that in\u00a0Windows Update<\/strong>.<\/p>\n

As always, if you experience any problems installing any of these patches this month, please feel free to leave a comment about it below; there\u2019s a good chance other readers have experienced the same and may even chime in here with some helpful tips.<\/p>\n

Further reading:<\/p>\n

Qualys on Patch Tuesday<\/a><\/p>\n

SANS Internet Storm Center’s Patch Tuesday Priorities.<\/a><\/p>\n

Martin Brinkmann of Ghacks.net<\/a><\/p>\n

https:\/\/krebsonsecurity.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

<\/p>\n

Credit to Author: BrianKrebs| Date: Wed, 10 Apr 2019 00:07:33 +0000<\/strong><\/p>\n

Microsoft today released fifteen software updates to fix more than 70 unique security vulnerabilities in various flavors of its\u00a0Windows operating systems and supported software, including at least two zero-day bugs. These patches apply to Windows, Internet Explorer (IE) and Edge browsers, Office, Sharepoint and Exchange. Separately, Adobe has issued security updates for Acrobat\/Reader and\u00a0Flash Player.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10643,10642],"tags":[17774,21514,21515,20625,21516,14947,20626,21517,13457,15086,15801,16936],"class_list":["post-15055","post","type-post","status-publish","format-standard","hentry","category-independent","category-krebs","tag-chris-goettl","tag-cve-2019-0803","tag-cve-2019-0859","tag-ghacks-net","tag-greg-wiseman","tag-ivanti","tag-martin-brinkmann","tag-microsoft-patch-tuesday-april-2019","tag-qualys","tag-rapid7","tag-sans-internet-storm-center","tag-time-to-patch"],"_links":{"self":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/15055","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=15055"}],"version-history":[{"count":0,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/15055\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=15055"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=15055"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=15055"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}