Microsoft July Patch Tuesday Resolves 123 Vulnerabilities
July Patch Tuesday Arrives With Over 120 Updates
July Patch Tuesday has 123 vulnerabilities remediated, including 18 Critical with the remaining 105 marked Important. After next month, Microsoft will have released more updates than all of 2019 combined.
If you tuned in to last months Patch Tuesday, you would have learned Microsoft resolved an astonishing 129 vulnerabilities breaking all known records for the number of fixes released in a single month.
Support for Windows 7 and Windows Server 2008 (including R2) officially ended after January 14, but there are 35 vulnerabilities remediated for customers who purchased an extension agreement. 6 are Critical and 29 are Important, including the Remote Desktop Client vulnerability below which is very important.
Robert Brown, Director of Services for Syxsense said, The Hijacking vulnerability announced on Friday could not have come at a worse time being so close to the July Patch Tuesday. Today we learned that very version has an elevation of privilege vulnerability. With OneDrive being closely integrated into the Microsoft real-estate, can you afford not to protect your remote workforce?
Important Patch Tuesday Vulnerabilities
1. CVE-2020-1350
With a CVSS score of 10.0, this DNS Server has the highest independently-scored threat this month. However, it does have a countermeasure that can be deployed by modifying a registry key on each server. This requires the DNS service to be restarted in order for the countermeasure to take effect.
This could be difficult with these servers being highly distributed. This is not currently Public Aware or Weaponised, but exploitation is extremely likely, making it our top vulnerability of the month.
2. CVE-2020-1463
Media streaming is usually disabled on Windows 10 devices, but with so many users working from home, it is now more likely to be used in the enterprise. This elevation of privilege could be exposed by streaming videos within Microsoft Stream or Yammer containing a specially crafted application. The method to expose this has been made Public, which means this could become Weaponized very soon.
3. CVE-2020-1374
This vulnerability impacts Remote Desktop Client, still used by many organizations to support staff both from within the network and at home. Although this vulnerability doesnt have the highest CVSS score (7.5), the technology is regularly used and exploited, so we highly recommend prioritizing this update. The exploit requires a sophisticated sequence of events to take place, but it can be exploited via a simple network with None privileges required.
4. CVE-2020-1465
A new version of OneDrive was recently released to resolve a hijacking vulnerability. Version 20.073.0409.0003 should have been installed without delay, however an additional vulnerability has been discovered causing an elevation of privilege.
Experience the Power of Syxsense
Syxsense is a cloud-based solution that helps organizations manage and secure their endpoints with ease. Automatically deploy OS and third-party patches as well as Windows 10 Feature Updates for Microsoft, Mac, and Linux devices.
Syxsense Recommendations
Based on the vendor severity and CVSS score, we have made a few recommendations below which you should prioritize this month. Please pay close attention to any of these which are Publicly Aware and / or Weaponized.
| Reference | Description | Vendor Severity | CVSS Score | Weaponised | Publicly Aware | Counter-measure | Syxsense Recommended |
| CVE-2020-1463 | Windows Shared Stream Library Elevation of Privilege Vulnerability | Important | 7.8 | No | Yes | No | Yes |
| CVE-2020-1350 | Windows DNS Server Remote Code Execution Vulnerability | Critical | 10 | No | No | Yes | Yes |
| CVE-2020-1408 | Microsoft Graphics Remote Code Execution Vulnerability | Important | 8.8 | No | No | No | Yes |
| CVE-2020-1435 | GDI+ Remote Code Execution Vulnerability | Critical | 8.8 | No | No | No | Yes |
| CVE-2020-1436 | Windows Font Library Remote Code Execution Vulnerability | Critical | 8.8 | No | No | No | Yes |
| CVE-2020-1032 | Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability | Critical | 8 | No | No | No | Yes |
| CVE-2020-1036 | Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability | Critical | 8 | No | No | No | Yes |
| CVE-2020-1040 | Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability | Critical | 8 | No | No | No | Yes |
| CVE-2020-1041 | Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability | Critical | 8 | No | No | No | Yes |
| CVE-2020-1042 | Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability | Critical | 8 | No | No | No | Yes |
| CVE-2020-1043 | Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability | Critical | 8 | No | No | No | Yes |
| CVE-2020-1409 | DirectWrite Remote Code Execution Vulnerability | Critical | 7.8 | No | No | No | Yes |
| CVE-2020-1410 | Window Address Book Remote Code Execution Vulnerability | Critical | 7.8 | No | No | No | Yes |
| CVE-2020-1424 | Windows Update Stack Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | Yes |
| CVE-2020-1421 | LNK Remote Code Execution Vulnerability | Critical | 7.5 | No | No | No | Yes |
| CVE-2020-1374 | Remote Desktop Client Remote Code Execution Vulnerability | Critical | 7.5 | No | No | No | Yes |
| CVE-2020-1403 | VBScript Remote Code Execution Vulnerability | Critical | 7.5 | No | No | No | Yes |
| CVE-2020-1147 | .NET Framework, SharePoint Server, and Visual Studio Remote Code Execution Vulnerability | Critical | TBC | No | No | No | Yes |
| CVE-2020-1025 | Microsoft Office Elevation of Privilege Vulnerability | Critical | TBC | No | No | No | Yes |
| CVE-2020-1349 | Microsoft Outlook Remote Code Execution Vulnerability | Critical | TBC | No | No | No | Yes |
| CVE-2020-1439 | PerformancePoint Services Remote Code Execution Vulnerability | Critical | TBC | No | No | No | Yes |
| CVE-2020-1465 | Microsoft OneDrive Elevation of Privilege Vulnerability | Important | TBC | No | No | No | Yes |
| CVE-2020-1469 | Bond Denial of Service Vulnerability | Important | TBC | No | No | No | |
| CVE-2020-1240 | Microsoft Excel Remote Code Execution Vulnerability | Important | TBC | No | No | No | |
| CVE-2020-1342 | Microsoft Office Information Disclosure Vulnerability | Important | TBC | No | No | No | |
| CVE-2020-1445 | Microsoft Office Information Disclosure Vulnerability | Important | TBC | No | No | No | |
| CVE-2020-1458 | Microsoft Office Remote Code Execution Vulnerability | Important | TBC | No | No | No | |
| CVE-2020-1450 | Microsoft Office SharePoint XSS Vulnerability | Important | TBC | No | No | No | |
| CVE-2020-1451 | Microsoft Office SharePoint XSS Vulnerability | Important | TBC | No | No | No | |
| CVE-2020-1456 | Microsoft Office SharePoint XSS Vulnerability | Important | TBC | No | No | No | |
| CVE-2020-1449 | Microsoft Project Remote Code Execution Vulnerability | Important | TBC | No | No | No | |
| CVE-2020-1454 | Microsoft SharePoint Reflective XSS Vulnerability | Important | TBC | No | No | No | |
| CVE-2020-1444 | Microsoft SharePoint Remote Code Execution Vulnerability | Important | TBC | No | No | No | |
| CVE-2020-1443 | Microsoft SharePoint Spoofing Vulnerability | Important | TBC | No | No | No | |
| CVE-2020-1446 | Microsoft Word Remote Code Execution Vulnerability | Important | TBC | No | No | No | |
| CVE-2020-1447 | Microsoft Word Remote Code Execution Vulnerability | Important | TBC | No | No | No | |
| CVE-2020-1448 | Microsoft Word Remote Code Execution Vulnerability | Important | TBC | No | No | No | |
| CVE-2020-1442 | Office Web Apps XSS Vulnerability | Important | TBC | No | No | No | |
| CVE-2020-1326 | Team Foundation Server Cross-site Scripting Vulnerability | Important | TBC | No | No | No | |
| CVE-2020-1416 | Visual Studio Code Elevation of Privilege Vulnerability | Important | TBC | No | No | No | |
| CVE-2020-1481 | Visual Studio Code Remote Code Execution Vulnerability | Important | TBC | No | No | No | |
| CVE-2020-1400 | Jet Database Engine Remote Code Execution Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1401 | Jet Database Engine Remote Code Execution Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1407 | Jet Database Engine Remote Code Execution Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1461 | Microsoft Defender Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1402 | Windows ActiveX Installer Service Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1396 | Windows ALPC Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1359 | Windows CNG Key Isolation Service Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1375 | Windows COM Server Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1368 | Windows Credential Enrolment Manager Service Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1393 | Windows Diagnostics Hub Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1418 | Windows Diagnostics Hub Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1392 | Windows Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1394 | Windows Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1395 | Windows Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1365 | Windows Event Logging Service Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1371 | Windows Event Logging Service Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1355 | Windows Font Driver Host Remote Code Execution Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1085 | Windows Function Discovery Service Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1381 | Windows Graphics Component Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1382 | Windows Graphics Component Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1356 | Windows iSCSI Target Service Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1336 | Windows Kernel Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1411 | Windows Kernel Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1372 | Windows Mobile Device Management Diagnostics Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1346 | Windows Modules Installer Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1373 | Windows Network Connections Service Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1390 | Windows Network Connections Service Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1363 | Windows Picker Platform Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1360 | Windows Profile Service Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1249 | Windows Runtime Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1353 | Windows Runtime Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1370 | Windows Runtime Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1399 | Windows Runtime Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1404 | Windows Runtime Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1413 | Windows Runtime Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1414 | Windows Runtime Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1415 | Windows Runtime Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1422 | Windows Runtime Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1347 | Windows Storage Services Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1423 | Windows Subsystem for Linux Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1357 | Windows System Events Broker Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1354 | Windows UPnP Device Host Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1430 | Windows UPnP Device Host Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1352 | Windows USO Core Worker Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1344 | Windows Wallet Service Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1362 | Windows Wallet Service Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1369 | Windows Wallet Service Elevation of Privilege Vulnerability | Important | 7.8 | No | No | No | |
| CVE-2020-1412 | Microsoft Graphics Components Remote Code Execution Vulnerability | Important | 7.5 | No | No | No | |
| CVE-2020-1431 | Windows AppX Deployment Extensions Elevation of Privilege Vulnerability | Important | 7.1 | No | No | No | |
| CVE-2020-1405 | Windows Mobile Device Management Diagnostics Elevation of Privilege Vulnerability | Important | 7.1 | No | No | No | |
| CVE-2020-1364 | Windows Wallet Service Denial of Service Vulnerability | Important | 7.1 | No | No | No | |
| CVE-2020-1384 | Windows CNG Key Isolation Service Elevation of Privilege Vulnerability | Important | 7 | No | No | No | |
| CVE-2020-1388 | Windows Elevation of Privilege Vulnerability | Important | 7 | No | No | No | |
| CVE-2020-1429 | Windows Error Reporting Manager Elevation of Privilege Vulnerability | Important | 7 | No | No | No | |
| CVE-2020-1427 | Windows Network Connections Service Elevation of Privilege Vulnerability | Important | 7 | No | No | No | |
| CVE-2020-1428 | Windows Network Connections Service Elevation of Privilege Vulnerability | Important | 7 | No | No | No | |
| CVE-2020-1438 | Windows Network Connections Service Elevation of Privilege Vulnerability | Important | 7 | No | No | No | |
| CVE-2020-1406 | Windows Network List Service Elevation of Privilege Vulnerability | Important | 7 | No | No | No | |
| CVE-2020-1437 |
Windows Share This Story, Choose Your Platform!Related Posts
|