High Threat Security Alert (A19-08-01): Multiple Vulnerabilities in Microsoft Products (August 2019)


 

Published on: 14 August 2019

Last update on: 29 August 2019

  
  

Description:

Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components.  The list of security updates can be found at:

https://support.microsoft.com/en-us/help/20190813/security-update-deployment

According to Symantec’s product update released on 27.8.2019 (URL given below), computer systems running Windows 7 SP1 and Windows Server 2008 R2 SP1 and installed with the anti-malware solution Symantec Endpoint Protection (SEP) may not be able to download and install Microsoft KB4512506/KB4512486 and other future Windows updates. Users of affected systems should follow the recommendations provided by Symantec to upgrade the affected SEP in order to get complete updates from Microsoft.

Symantec Product Update:
https://support.symantec.com/us/en/article.tech255857.html

According to Microsoft, potential attackers are likely to exploit the Remote Desktop Services vulnerabilities (CVE-2019-1181 and CVE-2019-1182) for remote code execution. For details, please refer to the following blog post published by Microsoft:

https://msrc-blog.microsoft.com/2019/08/13/patch-new-wormable-vulnerabilities-in-remote-desktop-services-cve-2019-1181-1182/

Users are advised to take immediate action to patch the affected systems to mitigate the elevated risk of cyber attacks.

  

Affected Systems:

  • Microsoft Internet Explorer 9, 10, 11
  • Microsoft Edge
  • Microsoft Windows 7, 8.1, RT 8.1, 10
  • Microsoft Windows Server 2008, 2008 R2, 2012, 2012 R2, 2016, 2019
  • Microsoft Windows Server, version 1803, version 1903
  • Microsoft Office 2010, 2013, 2013 RT, 2016, 2016 for Mac, 2019, 2019 for Mac
  • Microsoft Office 365, 365 ProPlus
  • Office Online Server
  • Office Web Apps 2010, Server 2013
  • Microsoft Word 2010, 2013, 2013 RT, 2016
  • Microsoft Outlook 2010, 2013, 2013 RT, 2016
  • Outlook for iOS
  • Microsoft SharePoint Enterprise Server 2013, 2016
  • Microsoft SharePoint Foundation 2010, 2013
  • Microsoft SharePoint Server 2010, 2019
  • Microsoft Exchange Online
  • ChakraCore
  • Microsoft Forefront Endpoint Protection 2010
  • Microsoft Security Essentials
  • Microsoft System Center Endpoint Protection, 2012 Endpoint Protection, 2012 R2 Endpoint Protection
  • Windows Defender
  • Microsoft Visual Studio 2017, 2019
  • Microsoft Dynamics 365 (on-premises) version 9.0

A complete list of the affected products can be found at:
https://portal.msrc.microsoft.com/en-us/security-guidance

 

Impact:

Depending on the vulnerability exploited, a successful attack could lead to remote code execution, information disclosure, security feature bypass, elevation of privilege, spoofing, tampering and denial of service.

 

Recommendation:

Patches for affected products are available from the Windows Update / Microsoft Update Catalog.  Users of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.

 

More Information:

https://support.symantec.com/us/en/article.tech255857.html
https://support.microsoft.com/en-hk/help/4512486
https://support.microsoft.com/en-hk/help/4512506
https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/312890cc-3673-e911-a991-000d3a33a34d
https://support.microsoft.com/en-us/help/20190813/security-update-deployment
https://www.hkcert.org/my_url/en/alert/19081401
https://www.us-cert.gov/ncas/current-activity/2019/08/13/microsoft-releases-august-2019-security-updates
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV190014
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0714 (to CVE-2019-0718)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0720
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0723
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0736
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0965
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1030
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1057
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1078
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1125
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1131
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1133
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1139
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1140
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1141
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1143 (to CVE-2019-1159)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1161 (to CVE-2019-1164)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1168 (to CVE-2019-1188)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1190
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1192 (to CVE-2019-1206)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1211 (to CVE-2019-1213)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1218
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1222 (to CVE-2019-1229)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9506
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9511 (to CVE-2019-9514)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9518

 



Tag: Microsoft , Internet Explorer , Edge , Windows , Windows Server , Microsoft Office , Word , Outlook , Office 365 , Office Web Apps , SharePoint , Exchange Online , ChakraCore , Forefront , Security Essentials , System Center , Windows Defender , Visual Studio , Dynamics 365
Tags