Microsoft Updates
3835Warning Date
Severity Level
Warning Number
Target Sector
11 September, 2019
● Critical
2019-422
All
Description:
Microsoft has software updates to address a total of 79 vulnerabilities in the following products:
- Microsoft Windows
- Internet Explorer
- Microsoft Edge
- ChakraCore
- Microsoft Office and Microsoft Office Services and Web Apps
- Adobe Flash Player
- Microsoft Lync
- Visual Studio
- Microsoft Exchange Server
- .NET Framework
- Microsoft Yammer
- ASP.NET
- .NET Core
- Project Rome
- Team Foundation Server
Threats:
An attacker could exploit these vulnerabilities by doing the following:
- Remote arbitrary code execution
- Escalation of privilege
- Cross-site–Scripting (XSS) attack
- Security feature bypass
- Denial of Service (DoS) attacks
- Information Disclosure
Best practice and Recommendations:
The CERT team encourages to update and check all the affected product details according to the links below.
https://portal.msrc.microsoft.com/en-us/security-guidance/summary