{"id":13850,"date":"2019-09-11T17:50:22","date_gmt":"2019-09-11T12:20:22","guid":{"rendered":"https:\/\/www.technologyforyou.org\/?p=13850"},"modified":"2019-09-11T17:50:22","modified_gmt":"2019-09-11T12:20:22","slug":"microsofts-september-2019-patch-tuesday-tenable-roundup","status":"publish","type":"post","link":"https:\/\/www.technologyforyou.org\/microsofts-september-2019-patch-tuesday-tenable-roundup\/","title":{"rendered":"Microsoft&#8217;s September 2019 Patch Tuesday : Tenable Roundup"},"content":{"rendered":"<p align=\"left\"><span style=\"font-family: arial, helvetica, sans-serif;\">Microsoft&#8217;s\u00a0<a title=\"This external link will open in a new window\" href=\"http:\/\/r20.rs6.net\/tn.jsp?f=001AWsEcYzIp5af_4mc4TkzlhpqoOt3lbz9b-KMGlBNTbSwOGR6SKniZJ6zDq92W8ohWwT_hFttZu7Cg1cbWFXL2zGJSC0XugrjmqU1vGss1CDC5Ar1rPW6rRxYUnXM6fAeKVPBKB-yGIKJVguNM2gxznkd5u09YhrvwNVfB1T5EdOe_Kix7MPffoTXRYFHdPa_HGCk92HJydYDCqOHtsZ_gd3NRulOvLo69wC9onynZG_UfhxrwOwiyMpuQ0FEw-ki4OmuIkyUF4rYjcQjfDkj6nzh3OJWTUvEKQdrs-g6tiU=&amp;c=nef0biYaZ67FiERSCJn0Wh6Xvk8ksrP2xIU27_4_UPM_dpqihKyfyA==&amp;ch=eOSY8ZVN_apxK_Os7ej8ukOA8C0GpQ-30it2XKtu3orBchwJlKRj3w==\" target=\"_blank\" rel=\"noopener noreferrer\" shape=\"rect\"><span lang=\"EN-AU\">September 2019 Patch Tuesday<\/span><\/a>\u00a0release contains updates for 79 CVEs, 17 of which are rated critical. In the wake of\u00a0<span lang=\"EN-AU\">BlueKeep<\/span><span lang=\"EN-AU\">\u00a0<\/span>in May, and the four additional CVEs for Remote Desktop Services in\u00a0<a title=\"This external link will open in a new window\" href=\"http:\/\/r20.rs6.net\/tn.jsp?f=001AWsEcYzIp5af_4mc4TkzlhpqoOt3lbz9b-KMGlBNTbSwOGR6SKniZJ6zDq92W8ohc3POxxjrEZJzFJtolIspGOQF6MJaJGVSs2-w3MStQJdDjMf-mFZRsyCUfdy47BHhVmINtRH3V1CO29ZbZDwX8xPzWHbTSQ_oLViIKbXK2DwjO5DSFnWTKiibTssCSHvIy3I4b7OdJ8sDlMqlm7xQVxmOtFc2cXd7Cl2WU23HgF4wV77fz28j--Ax4MKP2BYfbl7Hxz7iFL8=&amp;c=nef0biYaZ67FiERSCJn0Wh6Xvk8ksrP2xIU27_4_UPM_dpqihKyfyA==&amp;ch=eOSY8ZVN_apxK_Os7ej8ukOA8C0GpQ-30it2XKtu3orBchwJlKRj3w==\" target=\"_blank\" rel=\"noopener noreferrer\" shape=\"rect\"><span lang=\"EN-AU\">August (DejaBlue)<\/span><\/a>, Microsoft has addressed four new CVEs for Remote Desktop Client. Additionally, Microsoft patched two elevation of privilege bugs which have been exploited in the wild this month.\u00a0<span lang=\"EN-AU\">Click\u00a0<\/span><a title=\"This external link will open in a new window\" href=\"http:\/\/r20.rs6.net\/tn.jsp?f=001AWsEcYzIp5af_4mc4TkzlhpqoOt3lbz9b-KMGlBNTbSwOGR6SKniZJ6zDq92W8ohPHv_4mZybk2tCSnxskgPuepvo9TH6nvENcMjFBjXci8JbhrVWEAijMNjvjBwA6RhUqQ8ILcRlQmAKzWR-OdybUnH4orsKkn99hPOQuaGYR_UCh18vpjF9x3dOvjgxzLEr90vW_JR2eE0JmQRhTlEA4AXFLQBfCMdan3r2IiNUaElHcsPaPKcbsOJgJvvc2II&amp;c=nef0biYaZ67FiERSCJn0Wh6Xvk8ksrP2xIU27_4_UPM_dpqihKyfyA==&amp;ch=eOSY8ZVN_apxK_Os7ej8ukOA8C0GpQ-30it2XKtu3orBchwJlKRj3w==\" target=\"_blank\" rel=\"noopener noreferrer\" shape=\"rect\">here<\/a>\u00a0to read the complete breakdown of the most important CVEs from this month&#8217;s release.<\/span><span lang=\"EN-AU\" style=\"font-family: arial, helvetica, sans-serif;\">\u00a0<\/span><\/p>\n<div align=\"left\">\n<blockquote><p><span style=\"font-family: arial, helvetica, sans-serif;\"><span lang=\"EN-AU\"><b>Satnam<\/b><\/span><span lang=\"EN-AU\">\u00a0<b>Narang<\/b>,\u00a0<b>Senior<\/b>\u00a0<b>Research<\/b>\u00a0<b>Engineer<\/b>\u00a0at\u00a0<b>Tenable<\/b>\u00a0said, &#8220;<\/span>T<span lang=\"EN-AU\">his month&#8217;s Patch Tuesday release contains updates for nearly 80 CVEs, including four critical vulnerabilities in the Remote Desktop Client, and two Elevation of Privilege vulnerabilities exploited in the wild as zero-days<\/span><span lang=\"EN-AU\">.<\/span><\/span><\/p><\/blockquote>\n<p><span style=\"font-family: arial, helvetica, sans-serif;\"><span lang=\"EN-AU\">Since Microsoft warned about BlueKeep (CVE-2019-0708) in May, Microsoft&#8217;s Platform Security Assurance &amp; Vulnerability Research team identified additional vulnerabilities in Remote Desktop, patching four critical flaws in August in Remote Desktop Services, dubbed &#8220;DejaBlue.&#8221; <\/span><\/span><\/p>\n<p><span style=\"font-family: arial, helvetica, sans-serif;\"><span lang=\"EN-AU\">This month, Microsoft&#8217;s internal research teams identified four new critical vulnerabilities in Remote Desktop Client (CVE-2019-1290, CVE-2019-1291, CVE-2019-0787, CVE-2019-0788). Unlike BlueKeep and DejaBlue, where attackers target vulnerable Remote Desktop servers, these vulnerabilities require an attacker to convince a user to connect to a malicious Remote Desktop server. Attackers could also compromise vulnerable servers and host malicious code on them and wait for users to connect to them<\/span><span lang=\"EN-AU\">.<\/span><\/span><\/p>\n<p><span style=\"font-family: arial, helvetica, sans-serif;\"><span lang=\"EN-AU\">Microsoft also patched two vulnerabilities that were exploited in the wild as zero-days. CVE-2019-1214 is an elevation of privilege vulnerability in the Windows Common Log File System (CLFS) Driver, while CVE-2019-1215 is an elevation of privilege vulnerability in the Winsock IFS Driver (ws2ifsl.sys). Both flaws exist due to improper handling of objects in memory by the respective drivers. Elevation of Privilege vulnerabilities are utilized by attackers post-compromise, once they&#8217;ve managed to gain access to a system in order to execute code on their target systems with elevated privileges<\/span><span lang=\"EN-AU\">.&#8221;<\/span><\/span><\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Microsoft&#8217;s\u00a0September 2019 Patch Tuesday\u00a0release contains updates for 79 CVEs, 17 of which are rated critical. In the wake of\u00a0BlueKeep\u00a0in May, and the four additional CVEs for Remote Desktop Services in\u00a0August (DejaBlue), Microsoft has addressed four new CVEs for Remote Desktop Client. Additionally, Microsoft patched two elevation of privilege bugs which have been exploited in the [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":13851,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[10,4],"tags":[7643,7642],"class_list":{"0":"post-13850","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-cyber-security","8":"category-technology","9":"tag-microsofts-september-2019-patch","10":"tag-microsofts-september-2019-patch-tuesday-tenable-roundup"},"_links":{"self":[{"href":"https:\/\/www.technologyforyou.org\/wp-json\/wp\/v2\/posts\/13850","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.technologyforyou.org\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.technologyforyou.org\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.technologyforyou.org\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.technologyforyou.org\/wp-json\/wp\/v2\/comments?post=13850"}],"version-history":[{"count":0,"href":"https:\/\/www.technologyforyou.org\/wp-json\/wp\/v2\/posts\/13850\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.technologyforyou.org\/wp-json\/wp\/v2\/media\/13851"}],"wp:attachment":[{"href":"https:\/\/www.technologyforyou.org\/wp-json\/wp\/v2\/media?parent=13850"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.technologyforyou.org\/wp-json\/wp\/v2\/categories?post=13850"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.technologyforyou.org\/wp-json\/wp\/v2\/tags?post=13850"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}