[ad_1]
The August Patch Tuesday proves to be a calmer month for Microsoft, in comparison with the extra eventful July safety bulletin. This is clear within the quick checklist of solely 44 patched vulnerabilities revealed this month, of which seven are famous as important and the remaining as vital. Eight have been additionally submitted through the Pattern Micro Zero Day Initiative.
What’s notable for this month is the inclusion of three vulnerabilities in Print Spooler, given how flaws on this service have garnered a lot consideration within the final month.
Extra print spooler bugs
From June to July, Microsoft grappled with vulnerabilities in print spooler. Including to its urgency was the invention that one vulnerability, dubbed PrintNightmare, was actively exploited throughout that point. The corporate launched a important out-of-band (OOB) patch forward of the July Patch Tuesday to rapidly deal with the issue. This month, the three bugs in print spooler may enable both privilege escalation or distant code execution (RCE). Amongst its flaws, the RCE CVE-2021-36936 is probably the most notable for being one of many three zero-days this month.
A repair for PetitPotam
One other beforehand disclosed zero-day vulnerability is in Home windows LSA (CVE-2021-36942). In late July Microsoft handled PetitPotam, an exploit for this vulnerability. The exploit can be utilized to assault Home windows area controllers or different Home windows servers. Microsoft described PetitPotam as a “basic NTLM Relay Assault,” and could be mitigated as such. This replace ought to block the LSARPC interface and additional protects towards NTLM relay assaults.
Updates for Microsoft Edge (Chromium-based)
This month’s safety replace information additionally contains seven CVEs for Chrome. Despite the fact that these vulnerabilities are usually not from any Microsoft product, Microsoft Edge (Chromium-based) makes use of Chromium Open Supply Software program (OSS). The inclusion was carried out to tell customers that the newest model of Microsoft Edge (Chromium-based) is not affected by the mentioned vulnerabilities. Google had addressed these vulnerabilities not too long ago, with Microsoft Edge additionally releasing the required updates for its browser prior the August Patch Tuesday.
Different notable vulnerabilities
Apart from the talked about zero-days in Print Spooler and Home windows LSA, the third one for this month is a privilege escalation vulnerability (CVE-2021-36948) in Home windows Replace Medic Service, a background characteristic launched in Home windows 10 to repair errors in Home windows Replace and stop these errors from blocking system updates.
Different elements that had important vulnerabilities included Home windows TCP/IP, Home windows Graphics Part, Scripting Engine, and Distant Desktop Consumer. Vulnerabilities for Microsoft Workplace, Microsoft Phrase, SharePoint, Home windows Defender, and Home windows 10 Replace Assistant have been additionally patched this month.
Pattern Micro Options
A proactive, multilayered strategy to safety is vital towards threats that exploit vulnerabilities — from the gateway, endpoints, networks, and servers.
The Pattern Micro™ Deep Safety™ answer supplies community safety, system safety, and malware prevention. Mixed with Vulnerability Safety, it might probably defend person techniques from a variety of upcoming threats which may goal vulnerabilities. Each options defend customers from exploits that focus on these vulnerabilities through the next rule:
1011077 – Microsoft Web Explorer Scripting Engine Reminiscence Corruption Vulnerability (CVE-2021-34480)
1011079 – Microsoft Home windows Providers NFS ONCRPC XDR Driver Distant Code Execution Vulnerability (CVE-2021-26432)
TippingPoint® Subsequent-Era Intrusion Prevention System (NGIPS) is a community site visitors answer that makes use of complete and contextual consciousness evaluation for superior threats that exploit vulnerabilities.
TippingPoint protects prospects by the next rule:
40071: HTTP: Microsoft Home windows JScript Reminiscence Corruption Vulnerability (CVE-2021-26232)
40090: UDP: Microsoft Home windows RPCXDR Kernel Driver Out-of-Bounds Write Vulnerability (CVE-2021-26432)
[ad_2]