Light Load for Patch Tuesday

Wednesday, December 13, 2017 @ 01:12 PM gHale

Patch Tuesday brought out three different updates for Microsoft Windows.

While the December Patch Tuesday was sparse, 19 of the fixed vulnerabilities ended up rated critical and 24 allowed for remote code execution (RCE), which would allow attacks to get full control of an unpatched system.

Fix Released for Infusion Pump
Hole in Xiongmai IP Cameras, DVRs
New Firmware Fixes Phoenix Contact X-SS Hole
Rockwell Fixes FactoryTalk Hole

There were 19 fixed critical Internet Explorer and Edge vulnerabilities, and Microsoft said users should install updates as soon as possible, as “exploitation is more likely.” That being said, the software giant said they are not aware of any exploits yet, but with the knowledge of the vulnerabilities out there, the potential for attacks against users not patching increases.

Microsoft said all Windows versions currently supported are affected by an RCE flaw in the Windows RRAS Service which could be used to get administrator rights on a target system.

“To exploit this vulnerability, an attacker would need to run a specially crafted application against an RPC server which has Routing and Remote Access enabled. Routing and Remote Access is a non-default configuration; systems without it enabled are not vulnerable,” the company said.

In this case, exploitation is less likely, though it’s worth noting that Windows 7, Windows 8.1, and Windows 10 are all affected by the vulnerability.

Leave a Reply

You must be logged in to post a comment.