Microsoft Updates
2161Warning Date
Severity Level
Warning Number
Target Sector
12 May, 2021
● Medium
2021-2901
All
Description:
Microsoft has released security updates to address several vulnerabilities in the following products:
- .NET Core & Visual Studio
- HTTP.sys
- Internet Explorer
- Microsoft Accessibility Insights for Web
- Microsoft Bluetooth Driver
- Microsoft Dynamics Finance & Operations
- Microsoft Exchange Server
- Microsoft Graphics Component
- Microsoft Office
- Microsoft Office Access
- Microsoft Office Excel
- Microsoft Office SharePoint
- Microsoft Office Word
- Microsoft Windows Codecs Library
- Microsoft Windows IrDA
- Open Source Software
- Role: Hyper-V
- Skype for Business and Microsoft Lync
- Visual Studio
- Visual Studio Code
- Windows Container Isolation FS Filter Driver
- Windows Container Manager Service
- Windows Cryptographic Services
- Windows CSC Service
- Windows Desktop Bridge
- Windows OLE
- Windows Projected File System FS Filter
- Windows RDP Client
- Windows SMB
- Windows SSDP Service
- Windows WalletService
- Windows Wireless Networking
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Execute arbitrary code –remotely
- Denial of service attack (DoS)
- Unauthorized disclosure of information
Best practice and Recommendations:
The CERT team encourages users to review Microsoft security advisory and apply the necessary updates: