[ad_1]
Microsoft has released its Patch Tuesday update for November 2020, which fixes 112 security bugs in several of its products.
Included in this patch is a fix for a zero-day vulnerability that was being used by malicious parties.
This flaw, known as CVE-2020-17087, affects the Windows kernel and was flagged by Microsoft as “important.”
However, this security flaw only works if the malicious party has already compromised the account of a less powerful user.
This has been witnessed by Google, which released an update on October 20 to fix a different bug that was being used in conjunction with this one.
CVE-2020-17087 affects all versions of Windows that are currently supported by Microsoft, including all distributions of Windows Server.
There are also 24 bugs that allow Remote Code Execution Attacks (RCE) in Microsoft Excel, Microsoft Sharepoint, Microsoft Exchange Server, and Microsoft Teams.
This update is available through Windows Update and you can see the full list of security updates. here.
Microsoft patch issues
While these security patches are important, Microsoft’s updates have developed a bad reputation in recent months as their patches cause other problems for their users.
In November, a Windows 10 error caused the loss of user certificates when upgrading from certain versions of Windows 10.
“Devices will only be affected if they have already installed any latest cumulative update (LCU) released on September 16, 2020 or later and then proceed to upgrade to a later version of Windows 10 from the media or an installation source that does not it has an LCU released October 13, 2020 or later embedded, ”Microsoft explained.
A September security update it also caused users to suffer from the blue screen of death. This happened when Windows discovered an offline folder role or domain profile on the user’s network.
Users also reported that they were disconnected from their websites every time they restarted their computer.
This had been going on since May 2020, but accelerated with the September 2020 update.
Now Read: Zoom Increases Security After US Claims It Misled Users
[ad_2]
