• Latest
  • Trending
Microsoft Patch Tuesday, September 2020 edition – Krebs on Security – Krebs on Security

Microsoft Tuesday Patch, October 2020 edition – Krebs on Security

26.10.2020

Lyme disease: causes, symptoms and treatments – Glamor UK

22.01.2021
Conor McGregor and Dustin Poirier make weight for UFC 257 – ESPN

Conor McGregor and Dustin Poirier make weight for UFC 257 – ESPN

22.01.2021
Real Madrid confirm boss under fire Zinedine Zidane has tested positive for coronavirus

Real Madrid confirm boss under fire Zinedine Zidane has tested positive for coronavirus

22.01.2021
These Microsoft tools help you reduce, remove, or lock out administrator access to improve security – TechRepublic

These Microsoft tools help you reduce, remove, or lock out administrator access to improve security – TechRepublic

22.01.2021
Cristiano Ronaldo is BETTER than Pele says Jason Cundy, who thinks some of the Brazilian legend’s goals ‘are made up’

Cristiano Ronaldo is BETTER than Pele says Jason Cundy, who thinks some of the Brazilian legend’s goals ‘are made up’

22.01.2021
Michigan man arrested for hitting police with hockey stick in U.S. Capitol breach, FBI says

Michigan man arrested for hitting police with hockey stick in U.S. Capitol breach, FBI says

22.01.2021
Tamzin Outhwaite thanks Toyboy for helping raise his two daughters

Tamzin Outhwaite thanks Toyboy for helping raise his two daughters

22.01.2021
To honor Kamala Harris, these women bring a traditional Indian art form to DC, made by thousands of hands

To honor Kamala Harris, these women bring a traditional Indian art form to DC, made by thousands of hands

22.01.2021
R&B excerpts: Rihanna and DaniLeigh!  – 106.3 The Groove – 106.3 The Groove

R&B excerpts: Rihanna and DaniLeigh! – 106.3 The Groove – 106.3 The Groove

22.01.2021
Watch Malcolm X Debate Sam Cooke in ‘One Night in Miami’

Watch Malcolm X Debate Sam Cooke in ‘One Night in Miami’

22.01.2021
Dale Moss Spotted for the First Time Since Charged with Cheating on Clare Crawley – E!  NEW

Dale Moss Spotted for the First Time Since Charged with Cheating on Clare Crawley – E! NEW

22.01.2021
Mortgage rates find some support after lousy start – Mortgage News Daily

Mortgage rates are almost back to early January levels – Mortgage News Daily

22.01.2021
Friday, January 22, 2021
  • World
  • Economics
  • Sport
    • Basketball
    • Football
    • Nfl
    • Golf
    • F1
    • UFC
  • Technology
  • Culture
    • Arts
  • Media
    • Film
    • Celebs
    • TV
  • LifeStyle
    • Auto
  • Travel
OLTNEWS
  • World
  • Economics
  • Sport
    • Basketball
    • Football
    • Nfl
    • Golf
    • F1
    • UFC
  • Technology
  • Culture
    • Arts
  • Media
    • Film
    • Celebs
    • TV
  • LifeStyle
    • Auto
  • Travel
OLTNEWS
No Result
View All Result

Home » Technology » Microsoft Tuesday Patch, October 2020 edition – Krebs on Security

Microsoft Tuesday Patch, October 2020 edition – Krebs on Security

3 months ago
in Technology
0
0
SHARES
Share on WhatsappShare on Facebook

Related posts

These Microsoft tools help you reduce, remove, or lock out administrator access to improve security – TechRepublic

These Microsoft tools help you reduce, remove, or lock out administrator access to improve security – TechRepublic

22.01.2021

Panchshil office parks awarded 3 “Oscars” for security

22.01.2021

It’s Cyber ​​Security Awareness Month! In accordance with this theme, if you (ab) use Microsoft Windows computers, you should know that the company today shipped a host of software updates to fix at least 87 security issues in Windows and the programs that run on the operating system. This means it’s time to save and repair again.

Eleven of these vulnerabilities received the most disastrous “critical” rating from Microsoft, meaning bad guys or malware could use them to gain complete control of an unpatched system with little to no user help. .

The worst in terms of outright dread is probably CVE-2020-16898, which is a nasty bug in Windows 10 and Windows Server 2019 which could be abused to install malware simply by sending a malformed data packet to a vulnerable system. CVE-2020-16898 got a CVSS score of 9.8 (10 is the most horrible).

Security provider Mcafee nicknamed the flaw “Bad neighbor“, And in a blog post about it, said that a proof of concept exploit shared by Microsoft with its partners appears to be” both extremely simple and perfectly reliable “, noting that this sucker is imminently” deworming ” – that is, capable of being militarized into a threat that spreads very quickly within networks.

“This results in an immediate BSOD (Blue Screen of Death), but more so indicates the likelihood of exploitation for those who manage to bypass Windows 10 and Windows Server 2019 mitigations,” McAfee’s Steve povolny wrote. “The effects of an exploit that allowed remote code execution would be widespread and very powerful, as this type of bug could become deworming.”

Trend Micro Zero Day Initiative (ZDI) draws special attention to another critical bug rolled back in this month’s patch bundle: CVE-2020-16947, which is an issue with Microsoft Outlook which could cause malware to load on a system simply by previewing malicious email in Outlook.

“The preview pane is an attack vector here, so you don’t even have to open mail to be impacted,” ZDI said. Dustin Childs.

While there don’t appear to be zero-day flaws in Microsoft’s October release, Todd Schell of Ivanti points out that a half-dozen of these flaws have been publicly disclosed before today, which means the bad guys have had a good start in being able to research and design working exploits.

Other fixes released today address issues with Exchange server, Visual studio, .NET Framework, and a whole mess of other core Windows components.

For all those who wanted a Flash player patch Adobe, your days of waiting are over. After several months of depriving us of Flash patches, Adobe has dispatched an update that fixes a single – albeit critical – flaw in the program that crooks could use to install malicious material on your computer simply by tricking you into a hacked or malicious website.

Chromium and Firefox both now disable Flash by default, and Chrome and IE / Edge automatically update the program when new security updates are available. Fortunately, Adobe is expected to withdraw Flash Player later this year, and Microsoft has announced plans to release updates later this year that will remove Flash from Windows machines.

It’s a good idea for Windows users to get into the habit of updating at least once a month, but for regular users (read: not businesses) it’s generally safe to wait a few days afterward. the release of fixes, so that Microsoft has time. to iron out the loopholes in the new armor.

But before updating, please make sure you have backed up your system and / or important files. It is not uncommon for a Windows update package to water its system or prevent it from starting properly, and some updates are even known to erase or corrupt files.

So do yourself a favor and back up before you install any fixes. Windows 10 even has built-in tools to help you do this, either by file / folder or by making a full, bootable copy of your hard drive at the same time.

And if you want to make sure that Windows has been configured to pause updating so that you can back up your files and / or your system before the operating system decides to restart and install the fixes on its own schedule, check out this guide.

As always, if you have any issues or issues installing any of these fixes this month, please consider leaving a comment about it below; there is a better chance that even other readers have been through the same thing and can provide some useful advice here.

Tags: CVE-2020-16898, CVE-2020-16947, Dustin Childs, Patch Flash Player, Ivanti, mcafee, Microsoft Patch Tuesday October 2020, Steve Povolny, Todd Schell, trend micro, Zero Day Initiative

This entry was posted on Tuesday October 13th, 2020 at 4:10 pm and is filed under Time to Patch. You can follow comments to this entry through the RSS 2.0 feed. You can skip to the end and leave a comment. Ping is currently not allowed.

Share this:

  • Twitter
  • Facebook

Like this:

Like Loading...

Related

Previous Post

Audi would take control of Bentley

Next Post

Unbeased Launches Data Marketplace to Improve AI & ML Transparency with Blockchain Technology – AiThority

Related Posts

These Microsoft tools help you reduce, remove, or lock out administrator access to improve security – TechRepublic
Technology

These Microsoft tools help you reduce, remove, or lock out administrator access to improve security – TechRepublic

22.01.2021
0

The SolarWinds compromise means that you can no longer defer the management of privileged accounts. A successful privileged access strategy...

Read more

Panchshil office parks awarded 3 “Oscars” for security

22.01.2021
Analysts expect Apple to grow 15% this year as work-from-home business drives sales

Analysts expect Apple to grow 15% this year as work-from-home business drives sales

22.01.2021

Samsung introduces a one-stop-shop that organizes every step of your culinary journey – Samsung newsroom international

22.01.2021

Huawei founder praises US tech at company’s first word since Biden’s launch – Yahoo Finance

22.01.2021

Sony Pictures Entertainment Germany Nabs ZDF Enterprises ‘Hide and Seek’ (EXCLUSIVE) – Variety

22.01.2021
Load More
Next Post
Unbeased Launches Data Marketplace to Improve AI & ML Transparency with Blockchain Technology – AiThority

Unbeased Launches Data Marketplace to Improve AI & ML Transparency with Blockchain Technology - AiThority

Recent Posts

  • Lyme disease: causes, symptoms and treatments – Glamor UK
  • Conor McGregor and Dustin Poirier make weight for UFC 257 – ESPN
  • Real Madrid confirm boss under fire Zinedine Zidane has tested positive for coronavirus
  • These Microsoft tools help you reduce, remove, or lock out administrator access to improve security – TechRepublic
  • Cristiano Ronaldo is BETTER than Pele says Jason Cundy, who thinks some of the Brazilian legend’s goals ‘are made up’

Archives

  • January 2021
  • December 2020
  • November 2020
  • October 2020
  • September 2020
  • August 2020
  • July 2020
  • June 2020
  • May 2020
  • April 2020
  • March 2020
  • EN

© 2020

No Result
View All Result
  • World
  • Economics
  • Sport
    • Basketball
    • Football
    • Nfl
    • Golf
    • F1
    • UFC
  • Technology
  • Culture
    • Arts
  • Media
    • Film
    • Celebs
    • TV
  • LifeStyle
    • Auto
  • Travel

© 2020

This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.
%d bloggers like this: