Microsoft has released security updates

Patch Tuesday is here and Microsoft has released Security updates for the list of software mentioned below and addresses 35 vulnerabilities as mentioned below.

List of Affected Software:

Internet Explorer
Microsoft Edge
Microsoft Windows
Microsoft Office and Microsoft Office Services and Web Apps
Microsoft Exchange Server
ChakraCore
Microsoft Malware Protection Engine

Table of Vulnerabilities Addressed:

ADV170021	CVE-2017-11890	CVE-2017-11907	CVE-2017-11918
ADV170022	CVE-2017-11893	CVE-2017-11908	CVE-2017-11919
ADV170023	CVE-2017-11894	CVE-2017-11909	CVE-2017-11927
CVE-2017-11885	CVE-2017-11895	CVE-2017-11910	CVE-2017-11930
CVE-2017-11886	CVE-2017-11899	CVE-2017-11911	CVE-2017-11932
CVE-2017-11887	CVE-2017-11901	CVE-2017-11912	CVE-2017-11934
CVE-2017-11888	CVE-2017-11903	CVE-2017-11913	CVE-2017-11935
CVE-2017-11889	CVE-2017-11905	CVE-2017-11914	CVE-2017-11936
CVE-2017-11906	CVE-2017-11916	CVE-2017-11939

Severity: Critical

Details	Impact	Product Family
ADV170022	Remote Code Execution	Adobe Flash Player
CVE-2017-11886	Remote Code Execution	Internet Explorer 11
CVE-2017-11888	Remote Code Execution	Microsoft Edge
CVE-2017-11889	Remote Code Execution	ChakraCore
		Microsoft Edge
CVE-2017-11890	Remote Code Execution	Internet Explorer 11
CVE-2017-11893	Remote Code Execution	ChakraCore
		Microsoft Edge
CVE-2017-11894	Remote Code Execution	ChakraCore
		Internet Explorer 11
		Microsoft Edge
CVE-2017-11895	Remote Code Execution	ChakraCore
		Internet Explorer 11
		Microsoft Edge
CVE-2017-11901	Remote Code Execution	Internet Explorer 11
CVE-2017-11903	Remote Code Execution	Internet Explorer 11
CVE-2017-11905	Remote Code Execution	ChakraCore
		Microsoft Edge
CVE-2017-11907	Remote Code Execution	Internet Explorer 11
CVE-2017-11908	Remote Code Execution	ChakraCore
		Microsoft Edge
CVE-2017-11909	Remote Code Execution	ChakraCore
		Microsoft Edge
CVE-2017-11910	Remote Code Execution	ChakraCore
		Microsoft Edge
CVE-2017-11911	Remote Code Execution	ChakraCore
		Microsoft Edge
CVE-2017-11912	Remote Code Execution	ChakraCore
		Internet Explorer 11
		Microsoft Edge
CVE-2017-11914	Remote Code Execution	ChakraCore
		Microsoft Edge
CVE-2017-11918	Remote Code Execution	ChakraCore
		Microsoft Edge
CVE-2017-11930	Remote Code Execution	Internet Explorer 11

Severity : Important

Details	Impact	Product Family
CVE-2017-11885	Remote Code Execution	Windows
CVE-2017-11887	Information Disclosure	Internet Explorer 11
CVE-2017-11899	Security Feature Bypass	Windows
CVE-2017-11906	Information Disclosure	Internet Explorer 11
CVE-2017-11913	Remote Code Execution	Internet Explorer 11
CVE-2017-11916	Remote Code Execution	ChakraCore
CVE-2017-11919	Information Disclosure	ChakraCore
		Internet Explorer 11
		Microsoft Edge
CVE-2017-11927	Information Disclosure	Windows
CVE-2017-11930	Remote Code Execution	ChakraCore
CVE-2017-11932	Spoofing	Exchange Server
CVE-2017-11934	Information Disclosure	Microsoft Office
CVE-2017-11935	Remote Code Execution	Microsoft Office
CVE-2017-11936	Elevation of Privilege	Microsoft Office
CVE-2017-11939	Information Disclosure	Microsoft Office

Severity: Moderate

Details	Impact	Product Family
CVE-2017-11886	Remote Code Execution	Internet Explorer 10
		Internet Explorer 11
		Internet Explorer 9
CVE-2017-11888	Remote Code Execution	Microsoft Edge
CVE-2017-11889	Remote Code Execution	Microsoft Edge
CVE-2017-11890	Remote Code Execution	Internet Explorer 10
		Internet Explorer 11
		Internet Explorer 9
CVE-2017-11893	Remote Code Execution	Microsoft Edge
CVE-2017-11894	Remote Code Execution	Internet Explorer 10
		Internet Explorer 11
		Internet Explorer 9
		Microsoft Edge
CVE-2017-11895	Remote Code Execution	Internet Explorer 11
		Microsoft Edge
CVE-2017-11901	Remote Code Execution	Internet Explorer 10
		Internet Explorer 11
CVE-2017-11903	Remote Code Execution	Internet Explorer 10
		Internet Explorer 11
		Internet Explorer 9
CVE-2017-11905	Remote Code Execution	Microsoft Edge
CVE-2017-11907	Remote Code Execution	Internet Explorer 10
		Internet Explorer 11
		Internet Explorer 9
CVE-2017-11909	Remote Code Execution	Microsoft Edge
CVE-2017-11910	Remote Code Execution	Microsoft Edge
CVE-2017-11911	Remote Code Execution	Microsoft Edge
CVE-2017-11912	Remote Code Execution	Internet Explorer 10
		Internet Explorer 11
		Internet Explorer 9
		Microsoft Edge
CVE-2017-11914	Remote Code Execution	Microsoft Edge
CVE-2017-11918	Remote Code Execution	Microsoft Edge
CVE-2017-11930	Remote Code Execution	Internet Explorer 11

Severity : Low

Details	Impact	Product Family
CVE-2017-11887	Information Disclosure	Internet Explorer 10
		Internet Explorer 11
		Internet Explorer 9
CVE-2017-11906	Information Disclosure	Internet Explorer 10
		Internet Explorer 11
		Internet Explorer 9
CVE-2017-11913	Remote Code Execution	Internet Explorer 10
		Internet Explorer 11
		Internet Explorer 9
CVE-2017-11919	Information Disclosure	Internet Explorer 11
		Microsoft Edge

Severity: None

Details	Impact	Product Family
ADV170021	Defense in Depth	Microsoft Office
ADV170023	Defense in Depth	Exchange Server

For more information about December 2017 Patch Updates, click here.

Another Ransomware Alert: File Spider

Spam: A worry and its remedy

Related Articles

Newsletter

Popular Posts

Preyed to Pay: Video Traps

Disclosure : Router based DNS MITM Attack

‘Work From Home’ Scams – A Business of Fake Opportunities

Archives

Categories