Within this month security updates, Microsoft has fixed up to 81 vulnerabilities. 27 of the vulnerabilities were said to be “critical” while one was called zero-day. The zero-day vulnerability is under active attack.
The .NET remote code execution flaw is being exploited a lot that lets attackers overtake the affected system while CVE-2017-8759 has been regarded as “important”.
Dustin Childs of Trend Micro’s Zero Day Initiative (ZDI) said, “This implies a successful exploit will be executing with elevated privileges. However, since the severity is set to Important, it indicates user interaction is involved here – likely opening an Office document or PDF file,”
He added, “Another vector would involve executing a malicious application as a low-privileged user. Either way, this patch should be your top priority this month since .NET is deployed just about everywhere, and it’s already being exploited – just likely in a limited fashion.”
CVE-2017-8628 also called “BlueBorne” is a critical Bluetooth driver spoofing vulnerability that helps the hacker to attack vulnerable Bluetooth stacks as a man-in-the middle.
The users have also been warned to immediately patch CVE-2017-0161, a NetBIOS RCE bug and CVE-2017-9417, a BroadPwn vulnerability in the HoloLens headset that has been rated “important”, yet it was publicly known before the release.
It is connected by two already existing public vulnerabilities. An important-rated Device Guard bug CVE-2017-8746, that lets the attacker transfer malicious code into a Windows PowerShell session and “Moderate” Microsoft Edge security feature to bypass flaw CVE-2017-8723.
Jimmy Graham, the Qualys director of product management explained, “For users of Microsoft’s DHCP server, priority should also be given to CVE-2017-8686, especially if using failover mode, due to another potential RCE”
He further explained, “Out of the 26 vulnerabilities that are both Critical and RCE, 22 of them impact Microsoft’s browsers. Many of these vulnerabilities involve the Scripting Engine, which can impact both browsers and Microsoft Office, and should be considered for prioritizing for workstation-type systems that use email and access the internet via a browser.”