Microsoft fixed two zero-day vulnerabilities of 80 security fixes

1 Star2 Star3 Star4 Star5 Star (No ratings yet)


Next Tuesday, Microsoft introduced 80 security patches, including 17 patches for critical errors

On September 10th, as part of its monthly security update release, Microsoft published 80 hotfixes for 15 of its products and services..

Among the 80 resolved problems, two have the status of zero-day vulnerabilities. At the time of the release of the fixes, real cases of exploitation of these vulnerabilities were already registered.

  • KB4515384 (Build 18362.356) Update for Windows 10, Version 1903
  • KB4514359 – Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10, Version 1903
  • Update KB4512578 (Build 17763.737) for Windows 10, Version 1809
  • Update KB4516058 (Build 17134.1006) for Windows 10, Version 1803
  • KB4516065 Update for Windows 7
  • KB4516067 Update for Windows 8.1

Zero Day Vulnerabilities»

Two zero-day fixed vulnerabilities are known by identifiers CVE-2019-1214 and CVE-2019-1215. Both errors allow an attacker to increase privileges on the system. These types of vulnerabilities are commonly used by malware to run malicious code with administrator privileges on early infected machines.

First mistake (CVE-2019-1214) associated with driver Windows Common Log File System (CLFS), and the second (CVE-2019-1215) engages the service ws2ifsl.sys (Winsock).

By tradition, Microsoft did not disclose detailed information about the operation of these errors. The only thing known is that the first problem was originally discovered by security researcher from the Qihoo 360 Vulcan team.

New RDP Vulnerabilities

In general, the September Tuesday Patches turned out to be very productive, like all the latest releases of security updates. Microsoft fixes approximately 70 security errors per month.

As in previous months, in September Microsoft also fixed several remote code execution errors in the (Remote Desktop Protocol). Two bugs with identifiers fixed this time CVE-2019-1290 and CVE-2019-1291.

Both errors were discovered by the internal Microsoft team, in contrast to the vulnerabilities BlueKeep and DejaBlue, which were discovered by independent researchers in May and August, respectively. Microsoft does not specify whether new vulnerabilities could be used to automatically spread malware and exploits like Internet worms.

Third-Party Security Updates

Traditionally, on Tuesday Patches, other vendors also release security patches. System administrators can install updates released on September 10 from Adobe and SAP.

KB4516115 – Windows System Security Update for Adobe Flash Player