Not forgotten yet - Windows 10 Mobile updated to Build 15254.566 (changelog)

Microsoft Patches 'Wormable' Flaw in Windows XP, 7 and Windows 2003

Microsoft also patched CVE-2019-0953, a remote code vulnerability in Microsoft Office which lets an attacker run code as the targeted user by persuading them to open a malicious file.

There is now no indication that the flaw is already being exploited, but Microsoft said it is "highly likely" that malicious actors will soon write an exploit to incorporate it into malware.

Microsoft says that the critical RDS vulnerability tracked as CVE-2019-0708 impacts only older in-support versions of Windows (i.e. Windows 7, Windows Server 2008 R2, and Windows Server 2008), with security updates for the affected versions being available via the Microsoft Security Update Guide.

The company also stated that PCs running Windows 8 and Windows 10 are not affected by this vulnerability. Four handle remote code execution vulnerabilties in the Windows dynamic host control protocol (DHCP) server that assigns internet protocol addresses to clients, as well as flaws in the GDI+ graphics rendering component and Microsoft Word.

Protections against a new subclass of speculative execution side-channel vulnerabilities, known as Microarchitectural Data Sampling, for 64-Bit (x64) versions of Windows (CVE-2018-11091,CVE-2018-12126, CVE-2018-12127, CVE-2018-12130). The affected versions of Windows are Windows 7, Windows XP, Windows 2003 and Windows Server 2008, so we strongly suggest downloading and applying this security fix in case you are using the aforementioned OSes. With NLA enabled, systems are protected against "wormable" malware or advanced malware threats that could exploit the vulnerability, as NLA requires authentication before the vulnerability can be triggered.


"CVE-2019-0708 should be the highest priority patching because, in addition to the wormable capabilities in this exploit, many modern ransomware variants, such as Dharma, Robbinhood, and CrySIS, often use vulnerable RDP servers to gain access to victim networks", argued Recorded Future senior solutions architect, Allan Liska.

For May 2019 Patch Tuesday, Microsoft has released fixes for 79 vulnerabilities, 22 of which are deemed critical.

Among the patches is a fix for a zero-day vulnerability in the Windows Error Reporting Service.

Security researchers have shown it is possible to exploit MDS vulnerabilities with attacks such as rogue in-flight data load (RIDL) and Fallout to glean secrets and sensitive information such as password and digital keys on recent Intel processors. That vulnerability affects both Mac and Windows systems.

Related News:



Most liked

Sri Lanka army investigates video of apparent anti-Muslim attack
Mr Wickremesinghe said he had given powers to the security forces to take strong action against those disturbing the peace. One man died after being admitted to hospital with stab wounds, an officer at Marawila hospital said.

Woman shot dead by United States police, seconds after yelling 'I'm pregnant'
He apparently recognized her from previous encounters and knew she had "outstanding warrants", according to a statement from Lt. However, police say as the officer tased the woman, she then gained control of his taser and tried to fire it at the officer.

Mike Pompeo warns Russian Federation not to meddle in 2020 USA election
And we hope that we can continue to move forward. "We've said many times that we also want to fully restore our relations". They also discussed North Korea, which both want to see give up its nuclear weapons.

Myanmar plane lands safely amid nose wheel failure
Ground staff watched on alarmed as the Embraer 190 had been circling the airport with only two set of landing gear deployed. Captain Myat Moe Aung radioed traffic control to check if the wheels had deployed following the technical malfunction.

Mariana Trench submarine dive finds manmade rubbish at sea's deepest point
The dive was the first for The Five Deeps Expedition, funded by Vescovo, and is being filmed for a Discovery Channel documentary. It's not the first time plastic has been found at the bottom of the sea, but it's a reminder of the scale of the problem .

The GAME OF THRONES Showrunners Are Making The Next STAR WARS Movie
If there are two people who know how to direct an arsenal of characters with weird names, it's certainly David Benioff and D.B. Iger said he hasn't seen the finished Rise of Skywalker yet, but he expects it will be extremely popular.

Third of Northern Ireland adults in despair over body image
When it comes to managers, Mind's research found that many feel they could do with more support. A third of adults have felt anxious over their body image, researchers say.

Just One Premier League Player Played Every Minute Of Every Game
But as news of their title rivals' progress at Brighton filtered through, Liverpool's intensity gradually faded. But they have a Champions League final against Tottenham to look forward to.

Edwin Jackson set to play for record 14th team
He did not factor in the decision against the Blue Jays on July 28, when he allowed five earned runs in 4 1/3 innings. He is batting.191 on the year after devouring minor-league pitching last season to the tune of a.381 batting average.

A Mortal Kombat Movie Is Being Filmed In South Australia
We don't know which Mortal Kombat game the plot will be inspired by, or if it will decide to carve out a unique story all its own.

HTC Exodus 1s is a $300 Smartphone Running a Full Bitcoin Node
HTC Exodus 1S will be sold for somewhere between $250 and $300, and the release is planned to the third quarter this year. Phil Chen revealed a new low-priced version of its blockchain phone , the EXODUS 1s at the conference.

Barr launches new inquiry into origins of Russian Federation probe
He later acknowledged that there was no evidence of Federal Bureau of Investigation wrongdoing. Barr had confirmed the review publicly, though the person leading it was not previously known.

Donald Trump Jr. Agrees to Limited Testimony After Dems Threatened Contempt
Trump Jr. has been a focus of several probes - including special counsel Robert S. The president on Tuesday said he believed that his son was being treated poorly.

Trump applauds Barr's decision to scrutinize Russian Federation probe
He has a history of performing special investigations - in 2008 he was assigned by Attorney General Michael B. And you know what, I'm proud of our attorney general that his is looking into it.

Texas cop 'shoots unarmed pregnant woman' in shocking video
The Baytown Police Department says in a statement that the officer knew she had outstanding warrants and attempted to arrest her. The video is dark, but it shows what appears to be her breaking free from the officer and moving toward the apartment buildings.