Micro .ft Has released the final batch of security updates for it today Windows End of the year with relatively light patch load, PC in 2020. Of the 58 security vulnerabilities addressed this month, 9 got the most stringent “critical” label of microsoft .ft, meaning they could be misused by malware or miscreants to gain remote control over a PC without the users’ help.
Mercifully, it doesn’t look like any of the bugs that have been corrected this month are being actively exploited, nor is it detailed in the previous public.
Updates for remain critical bits Microsoft Exchange Server, SharePoint Server, And Windows 10 And Server 2016 Systems. Additionally, Microsoft offered advice on how to reduce the risk of DNS spoofing vulnerabilities in Windows Server 2008 from 2019 to 2019.
Some of the sub-critical “critical” bugs addressed this month may also be worthy of prompt patching into the issues enterprise environment, including a trio of updates to address security issues. Micro .ft Office Fees.
“Given that attackers often use Micro Office Office as a weapon to weaken Office fees, this should be a priority in patching,” he said. Alan Liska, Senior Security Architect Record Future. “Weaknesses, if exploited, would allow the attacker to run arbitrary code on the victim’s machine. These vulnerabilities affect Micros Excel ft Excel 2013 to 2019, Micro 36 ft 365 32 and 64 bit versions, Micro Office ft Office Fis 2019 32 and 64 bit versions and Micro Excel ft Excel for Mac 2019. “
We also learned this week that Redmond will quietly address a scary “zero-click” vulnerability in him. Micro .ft teams A platform that allows anyone to simply implement the code of their choice by sending a specially designed chat message to the users of the teams. The bug was cross-platform, meaning it could also be used to deliver malicious code to people who use teams on non-Windows devices.
Researcher Oscar Vegaris Githuben said in a proof-of-concept post that he reported the defect to Microsoft in late August, but Microsoft did not assign the error to a general vulnerability and exposure (CVE) rating because it has a no-do policy. So for errors that can be corrected without user interaction from the end of the micro .ft.
According to Vegaris, Microsoft addressed the team’s shortcomings in late October. But he said the error they corrected was one of five zeros or one-click-remote code execution errors he found and reported to the team. Arriving via LinkedIn, Vagiris declined to say whether Microsoft has yet addressed the issues of the rest of the teams.
Separate, Adobe Issued security updates for it Introduction, Experience manager And Lightroom software. There were no security updates for Adobe Flash Player, which is worth noting that Adobe is sunset programming later this year. Microsoft is taking steps to remove Flash from its Windows browsers, and Google and Firefox are already blocking Flash by default.
It’s a good idea for Windows users to get in the habit of updating at least once a month, but for regular users (read: not Enterprise) it’s usually safe to wait a few days after the patches are released, so that the microSD crack has time to get any chinks out of the new armor. To .ka.
But before you update, Please Make sure you have backed up your system and / or important files. It is not uncommon for a Windows update package to hook someone’s system or prevent it from booting, and some updates are known to delete or corrupt files.
So do yourself a favor and back up before installing any patches. Windows 10 also has some built-in tools that help you to do this, either on a file-folder / folder basis or at the same time complete and bootable of your hard drive.
And if you want to make sure that Windows has stopped updating, so you can back up your files and / or system before you decide to reboot the operating system on its own schedule and install patches, check out this guide.
As always, if you experience difficulties or problems installing any of these patches this month, please consider making a comment about it below; There is also a great opportunity that other readers have also experienced and with some helpful tips here it is possible.
Tags: adobe, alan liska, microsoft ft office fees, microft patch
This entry was posted on Tuesday, December 8th, 2020 at 6:47 pm and is filed under Security Tools, Time to Patch. You can follow any comments for this login via the RSS 2.0 feed. You can skip to the end and leave a comment. Pinging is currently not allowed.
