Loading...
Blogs & Stories

SpiderLabs Blog

Attracting more than a half-million annual readers, this is the security community's go-to destination for technical breakdowns of the latest threats, critical vulnerability disclosures and cutting-edge research.

Patch Tuesday, July 2019

Patch Tuesday for July is here and after the massive release in June, the 77 patches issued this month seem manageable. Sixteen of the CVEs patched are rated "Critical", sixty are rated as "Important", and one singular CVE rated as "Moderate". Along with the common "Critical" vulnerabilities are a Remote Code Execution vulnerability for the .NET framework and an authentication bypass vulnerability in the Windows Communication Foundation (WCF) and Windows Identity Foundation (WIF). This affects several Microsoft platforms including Windows, .NET, and Sharepoint and can be exploited by an attacker signing a Security Assertion Markup Language (SAML) token with an arbitrary symmetric key. This would allow the attacker to sign in as any other user, including accounts with greater privilege like Administrator.

Among the vulnerabilities rated as "Important" are several RCE vulnerabilities in Microsoft SQL Server and Remote Desktop. There are also ten RCE vulnerabilities patched in DirectWrite which is a newer Microsoft API for text layout. Directwrite was meant as a replacement for the GDI/GDI+ text renderer which many will recognize as a common visitor to the Patch Tuesday list month after month.

Not listed this month are some older CVEs you should pay attention to. CVEs from 2017 and 2018 are currently being actively targeted in live, "in the wild" campaigns including CVE-2017-11882, CVE-2018-0798 and CVE-2018-0802 used to weaponize malicious RTF files. So, as always, make sure you are current on ALL your patches.

See you in August, but until then, stay safe.

 

Critical

.NET Framework Remote Code Execution Vulnerability
CVE-2019-1113
Remote Code Execution

Azure DevOps Server and Team Foundation Server Remote Code Execution Vulnerability
CVE-2019-1072
Remote Code Execution

Chakra Scripting Engine Memory Corruption Vulnerability
CVE-2019-1062, CVE-2019-1092, CVE-2019-1103, CVE-2019-1106, CVE-2019-1107
Remote Code Execution

GDI+ Remote Code Execution Vulnerability
CVE-2019-1102
Remote Code Execution

Internet Explorer Memory Corruption Vulnerability
CVE-2019-1063
Remote Code Execution

Microsoft Browser Memory Corruption Vulnerability
CVE-2019-1104
Remote Code Execution

Scripting Engine Memory Corruption Vulnerability
CVE-2019-1001, CVE-2019-1004, CVE-2019-1056, CVE-2019-1059
Remote Code Execution

WCF/WIF SAML Token Authentication Bypass Vulnerability
CVE-2019-1006
Elevation of Privilege

Windows DHCP Server Remote Code Execution Vulnerability
CVE-2019-0785
Remote Code Execution

 

Important

.NET Denial of Service Vulnerability
CVE-2019-1083
Denial of Service

ADFS Security Feature Bypass Vulnerability
CVE-2019-0975, CVE-2019-1126
Security Feature Bypass

Azure Automation Elevation of Privilege Vulnerability
CVE-2019-0962
Elevation of Privilege

DirectWrite Information Disclosure Vulnerability
CVE-2019-1093, CVE-2019-1097
Information Disclosure

DirectWrite Remote Code Execution Vulnerability
CVE-2019-1117, CVE-2019-1118, CVE-2019-1119, CVE-2019-1120, CVE-2019-1121, CVE-2019-1122, CVE-2019-1123, CVE-2019-1124, CVE-2019-1127, CVE-2019-1128
Remote Code Execution

DirectX Elevation of Privilege Vulnerability
CVE-2019-0999
Elevation of Privilege

Microsoft Excel Information Disclosure Vulnerability
CVE-2019-1112
Information Disclosure

Microsoft Excel Remote Code Execution Vulnerability
CVE-2019-1110, CVE-2019-1111
Remote Code Execution

Microsoft Exchange Information Disclosure Vulnerability
CVE-2019-1084
Information Disclosure

Microsoft Exchange Server Elevation of Privilege Vulnerability
CVE-2019-1136
Elevation of Privilege

Microsoft Exchange Server Spoofing Vulnerability
CVE-2019-1137
Spoofing

Microsoft Office SharePoint XSS Vulnerability
CVE-2019-1134
Spoofing

Microsoft Office Spoofing Vulnerability
CVE-2019-1109
Spoofing

Microsoft splwow64 Elevation of Privilege Vulnerability
CVE-2019-0880
Elevation of Privilege

Microsoft SQL Server Remote Code Execution Vulnerability
CVE-2019-1068
Remote Code Execution

Microsoft unistore.dll Information Disclosure Vulnerability
CVE-2019-1091
Information Disclosure

Microsoft Windows Elevation of Privilege Vulnerability
CVE-2019-1074, CVE-2019-1082
Elevation of Privilege

Outlook on the Web Cross-Site Scripting Vulnerability
ADV190021
Spoofing

Remote Desktop Protocol Client Information Disclosure Vulnerability
CVE-2019-1108
Information Disclosure

Remote Desktop Services Remote Code Execution Vulnerability
CVE-2019-0887
Remote Code Execution

SymCrypt Denial of Service Vulnerability
CVE-2019-0865
Denial of Service

Team Foundation Server Cross-site Scripting Vulnerability
CVE-2019-1076
Spoofing

Visual Studio Elevation of Privilege Vulnerability
CVE-2019-1077
Elevation of Privilege

Visual Studio Information Disclosure Vulnerability
CVE-2019-1079
Information Disclosure

Win32k Elevation of Privilege Vulnerability
CVE-2019-1132
Elevation of Privilege

Win32k Information Disclosure Vulnerability
CVE-2019-1096
Information Disclosure

Windows Audio Service Elevation of Privilege Vulnerability
CVE-2019-1086, CVE-2019-1087, CVE-2019-1088
Elevation of Privilege

Windows DNS Server Denial of Service Vulnerability
CVE-2019-0811
Denial of Service

Windows dnsrlvr.dll Elevation of Privilege Vulnerability
CVE-2019-1090
Elevation of Privilege

Windows Elevation of Privilege Vulnerability
CVE-2019-1129, CVE-2019-1130
Elevation of Privilege

Windows Error Reporting Elevation of Privilege Vulnerability
CVE-2019-1037
Elevation of Privilege

Windows GDI Information Disclosure Vulnerability
CVE-2019-1094, CVE-2019-1095, CVE-2019-1098, CVE-2019-1099, CVE-2019-1100, CVE-2019-1101, CVE-2019-1116
Information Disclosure

Windows Hyper-V Denial of Service Vulnerability
CVE-2019-0966
Denial of Service

Windows Kernel Elevation of Privilege Vulnerability
CVE-2019-1067
Elevation of Privilege

Windows Kernel Information Disclosure Vulnerability
CVE-2019-1071, CVE-2019-1073
Information Disclosure

Windows RPCSS Elevation of Privilege Vulnerability
CVE-2019-1089
Elevation of Privilege

Windows WLAN Service Elevation of Privilege Vulnerability
CVE-2019-1085
Elevation of Privilege

 

Moderate

ASP.NET Core Spoofing Vulnerability
CVE-2019-1075
Spoofing

 

No Rating

Docker Elevation of Privilege Vulnerability
CVE-2018-15664

Recent SpiderLabs Blog Posts