Patch Tuesday

14 03, 2018

March Patch Tuesday and AMD Processor Vulnerability

By |2018-04-03T11:34:57-07:00March 14th, 2018|Patch Tuesday|

CredSSP Vulnerability Main Focus of March Patch Tuesday For March Patch Tuesday, Microsoft announced 74 CVEs. But one deserves special attention. A remote code execution (RCE) vulnerability in Microsoft’s Credential Security Support Provider (CredSSP) protocol allows a remote attacker to leverage a man-in-the-middle attack to execute arbitrary code on a different machine in the attacked network. [...]

14 06, 2017

Beware ErraticGopher

By |2019-02-27T14:23:38-08:00June 14th, 2017|Patch Tuesday|

June’s Patch Tuesday fixed 94 vulnerabilities — more than double of previous months. It also fixed nine Adobe Flash vulnerabilities as well as vulnerabilities in other Adobe products, Mozilla, etc. — but who’s got time for that when there’s NSA–developed exploits floating around? As if that wasn’t enough, Microsoft also released advisory 4025685 with patches [...]

14 10, 2015

Microsoft’s October Security Update: Patch Tuesday turns 12!

By |2019-02-27T14:23:15-08:00October 14th, 2015|Patch Tuesday|

Celebrating the big 1-2, Microsoft took it easy and released only six security bulletins this Patch Tuesday, three rated critical. With the release of these bulletins, Microsoft breaks its record for most annual updates, previously set at 106 in 2010 and 2013. The critical bulletins all deal with remote code execution (and are presumably covered [...]