in

April Patch April: fix two zero days


Microsoft has released monthly security updates to the standard Patch Tuesday. April Security Updates fixes 74 vulnerabilities in a wide range of Microsoft products, including two zero-days.

Patch Tuesday

Patch Tuesday: The zero-day Windows

The two zero-days that were fixed this month are the same kind of vulnerability. Both involve raising permissions that affect Win32k, a key component of the Windows operating system.

These are the ones CVE-2019-0803 and CVE-2019-0859. discovered by two separate security teams. Zero-days were discovered by Alibaba's Cloud Intelligence Security Team and Kaspersky Lab, respectively, and Microsoft describes the two vulnerabilities in the same way.

There is a vulnerability in Windows permissions when Win32k fails to properly manage data in memory. An attacker who successfully exploits this vulnerability could execute arbitrary code in kernel mode. An attacker could then install programs. view, change, delete data, or even create new accounts with administrator privileges.

To exploit this vulnerability, the attacker must first log in to the system. Then a specially designed application could run to take advantage of the vulnerability and take full control of an affected system.

The update addresses the two vulnerabilities by fixing how Win32k manages data in memory.

So far it is not known if the two zero-days have been exploited by hackers.
However, given that Kaspersky has reported six zero-day Windows to Microsoft over the past six months, we can assume that CVE-2019-0859 is another vulnerability exploited by some state secret service.

Patch Tuesday: All vulnerabilities

TagCVE IDCVE Title
Servicing Stack UpdatesADV990001Latest Servicing Stack Updates
Adobe Flash PlayerADV190011April 2019 Adobe Flash Security Update
.NET CoreCVE-2019-0815ASP.NET Core Denial of Service Vulnerability
CSRSSCVE-2019-0735Windows CSRSS Elevation of Privilege Vulnerability
Microsoft BrowsersCVE-2019-0764Microsoft Browsers Tampering Vulnerability
Microsoft EdgeCVE-2019-0833Microsoft Edge Information Disclosure Vulnerability
Microsoft Exchange ServerCVE-2019-0817Microsoft Exchange Spoofing Vulnerability
Microsoft Exchange ServerCVE-2019-0858Microsoft Exchange Spoofing Vulnerability
Microsoft Graphics ComponentCVE-2019-0803Win32k Elevation of Privilege Vulnerability
Microsoft Graphics ComponentCVE-2019-0802Windows GDI Information Disclosure Vulnerability
Microsoft Graphics ComponentCVE-2019-0849Windows GDI Information Disclosure Vulnerability
Microsoft Graphics ComponentCVE-2019-0853GDI + Remote Code Execution Vulnerability
Microsoft JET Database EngineCVE-2019-0851Jet Database Engine Remote Code Execution Vulnerability
Microsoft JET Database EngineCVE-2019-0879Jet Database Engine Remote Code Execution Vulnerability
Microsoft JET Database EngineCVE-2019-0877Jet Database Engine Remote Code Execution Vulnerability
Microsoft JET Database EngineCVE-2019-0847Jet Database Engine Remote Code Execution Vulnerability
Microsoft JET Database EngineCVE-2019-0846Jet Database Engine Remote Code Execution Vulnerability
Microsoft OfficeCVE-2019-0826Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability
Microsoft OfficeCVE-2019-0801Office Remote Code Execution Vulnerability
Microsoft OfficeCVE-2019-0823Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability
Microsoft OfficeCVE-2019-0828Microsoft Excel Remote Code Execution Vulnerability
Microsoft OfficeCVE-2019-0822Microsoft Graphics Components Remote Code Execution Vulnerability
Microsoft OfficeCVE-2019-0827Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability
Microsoft OfficeCVE-2019-0824Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability
Microsoft OfficeCVE-2019-0825Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability
Microsoft Office SharePointCVE-2019-0831Microsoft Office SharePoint XSS Vulnerability
Microsoft Office SharePointCVE-2019-0830Microsoft Office SharePoint XSS Vulnerability
Microsoft Scripting EngineCVE-2019-0752Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting EngineCVE-2019-0861Chakra Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting EngineCVE-2019-0862Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting EngineCVE-2019-0860Chakra Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting EngineCVE-2019-0835Microsoft Scripting Engine Information Disclosure Vulnerability
Microsoft Scripting EngineCVE-2019-0753Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting EngineCVE-2019-0806Chakra Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting EngineCVE-2019-0739Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting EngineCVE-2019-0810Chakra Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting EngineCVE-2019-0812Chakra Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting EngineCVE-2019-0829Chakra Scripting Engine Memory Corruption Vulnerability
Microsoft WindowsCVE-2019-0840Windows Kernel Information Disclosure Vulnerability
Microsoft WindowsCVE-2019-0838Windows Information Disclosure Vulnerability
Microsoft WindowsCVE-2019-0796Windows Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2019-0839Windows Information Disclosure Vulnerability
Microsoft WindowsCVE-2019-0836Windows Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2019-0837DirectX Information Disclosure Vulnerability
Microsoft WindowsCVE-2019-0794OLE Automation Remote Code Execution Vulnerability
Microsoft WindowsCVE-2019-0814Win32k Information Disclosure Vulnerability
Microsoft WindowsCVE-2019-0805Windows Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2019-0848Win32k Information Disclosure Vulnerability
Microsoft WindowsCVE-2019-0730Windows Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2019-0688Windows TCP / IP Information Disclosure Vulnerability
Microsoft WindowsCVE-2019-0845Windows IOleCvt Interface Remote Code Execution Vulnerability
Microsoft WindowsCVE-2019-0685Win32k Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2019-0842Windows VBScript Engine Remote Code Execution Vulnerability
Microsoft WindowsCVE-2019-0841Windows Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2019-0731Windows Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2019-0732Windows Security Feature Bypass Vulnerability
Microsoft XMLCVE-2019-0793MS XML Remote Code Execution Vulnerability
Microsoft XMLCVE-2019-0791MS XML Remote Code Execution Vulnerability
Microsoft XMLCVE-2019-0790MS XML Remote Code Execution Vulnerability
Microsoft XMLCVE-2019-0792MS XML Remote Code Execution Vulnerability
Microsoft XMLCVE-2019-0795MS XML Remote Code Execution Vulnerability
Open Source SoftwareCVE-2019-0876Open Enclave SDK Information Disclosure Vulnerability
Team Foundation ServerCVE-2019-0870Team Foundation Server Cross-site Scripting Vulnerability
Team Foundation ServerCVE-2019-0869Team Foundation Server HTML Injection Vulnerability
Team Foundation ServerCVE-2019-0868Team Foundation Server Cross-site Scripting Vulnerability
Team Foundation ServerCVE-2019-0874Team Foundation Server Cross-site Scripting Vulnerability
Team Foundation ServerCVE-2019-0871Team Foundation Server Cross-site Scripting Vulnerability
Team Foundation ServerCVE-2019-0875Azure DevOps Server Elevation of Privilege Vulnerability
Team Foundation ServerCVE-2019-0867Team Foundation Server Cross-site Scripting Vulnerability
Team Foundation ServerCVE-2019-0857Team Foundation Server Spoofing Vulnerability
Team Foundation ServerCVE-2019-0866Team Foundation Server Cross-site Scripting Vulnerability
Windows Admin CenterCVE-2019-0813Windows Admin Center Elevation of Privilege Vulnerability
Windows kernelCVE-2019-0856Windows Remote Code Execution Vulnerability
Windows kernelCVE-2019-0859Win32k Elevation of Privilege Vulnerability
Windows kernelCVE-2019-0844Windows Kernel Information Disclosure Vulnerability
Windows SMB ServerCVE-2019-0786SMB Server Elevation of Privilege Vulnerability

___________

 


 

Subscribe to the Blog via Email

Enter your email to subscribe to the email notification service for new posts.

Read them Technology News from all over the world, with the validity of iGuRu.gr

Follow us on Google News iGuRu.gr at Google news