Ativamente Exploradas CVE-2019-0863 Dirigida maio 2019 patch Tuesday
CYBER NEWS

Ativamente Exploradas CVE-2019-0863 Dirigida maio 2019 patch Tuesday

Maio de Microsoft 2019 Patch Tuesday já lançou, contendo correcções para 79 vulnerabilidades em uma série de produtos. O lançamento também inclui uma atualização de segurança para Windows XP e Server 2003, which were not included in the mainstream customer support notification.




More attention should be paid to CVE-2019-0863, a zero-day vulnerability exploited in the wild, and ADV190013, a specific security advisory addressing a brand new set of Intel CPU flaws that were just revealed several hours ago. The new vulnerabilities in Intel processors can allow attackers to retrieve data being processed inside a CPU. The most dangerous of the flaws has been dubbed Zombieload – a side-channel attack very similar to the Meltdown, Espectro, and Foreshadow exploits.

More about CVE-2019-0863

De acordo com descrição oficial, this is an elevation of privilege vulnerability which exists in the way Windows Error Reporting (WER) handles files. In case of a successful exploitation, the attacker could run arbitrary code in kernel mode. This could lead to a range of malicious activities such as installing programs, changing or deleting data, and creating new accounts with administrative rights.

CVE-2019-0863 has been exploited in the wild, as revealed by security researchers from PolarBear and Palo Alto Networks. The flaw has been exploited to elevate rights on vulnerable systems from regular accounts to admin access. Not much is known about the actual attacks as details are still kept secret for users to have more time to patch their systems.

relacionado: Erros da Microsoft CVE-2019-0803, CVE-2019-0859 explorado no selvagem.

The bug has been fixed bycorrecting the way WER handles files,” as explained by Microsoft. The patch is available for all Windows systems.

As for the rest of the vulnerabilities, 73 are rated important or low. One particular vulnerability has been posted separately as a mitigating update against a wormable threat. The flaw is known under the CVE-2019-0708 identifier, and is a ‘wormableflaw in Remote Desktop Services, which Microsoft has patched even in the no longer supported Windows XP and Server 2003 versões.

Products that have been patched in this month’s set of updates include Internet Explorer, Beira, Escritório, Office Services and Web Apps, Azure DevOps Server, SQL Server, ChakraCore, NuGet, .NET Framework, .NET Core, Team Foundation Server, Estúdio visual, Online Services, and Skype for Android.

Milena Dimitrova

Milena Dimitrova

Um escritor inspirado e gerenciador de conteúdo que foi com SensorsTechForum desde o início. Focada na privacidade do usuário e desenvolvimento de malware, ela acredita fortemente em um mundo onde a segurança cibernética desempenha um papel central. Se o senso comum não faz sentido, ela vai estar lá para tomar notas. Essas notas podem mais tarde se transformar em artigos! Siga Milena @Milenyim

mais Posts

Me siga:
Twitter

Deixe um comentário

seu endereço de e-mail não será publicado. Campos obrigatórios são marcados *

limite de tempo está esgotado. Recarregue CAPTCHA.

Compartilhar no Facebook Compartilhar
Carregando...
Compartilhar no Twitter chilrear
Carregando...
Compartilhar no Google Plus Compartilhar
Carregando...
Partilhar no Linkedin Compartilhar
Carregando...
Compartilhar no Digg Compartilhar
Compartilhar no Reddit Compartilhar
Carregando...
Partilhar no StumbleUpon Compartilhar
Carregando...