Microsoft Updates
3355Warning Date
Severity Level
Warning Number
Target Sector
13 November, 2019
● Critical
2019-622
All
Description:
Microsoft has software updates to address multiple vulnerabilities in the following products:
- Internet Explorer 11
- Internet Explorer 10
- Internet Explorer 9
- Microsoft Windows
- Azure Stack
- ChakraCore
- Microsoft Office and Microsoft Office Services and Web Apps
- Visual Studio
- Microsoft Exchange Server
- Microsoft Edge (EdgeHTML-based)
Threats:
An attacker could exploit these vulnerabilities by doing the following:
- Remote arbitrary code execution
- Security feature bypass
- Spoofing
- Information Disclosure
- Elevation of Privilege
- Memory Corruption
- Denial of Service (DoS)
Best practice and Recommendations:
The CERT team encourages to update and check all the affected product details according to the links below.