Posts

Showing posts from 2019

Microsoft Patch Tuesday

Image
Microsoft Patch Tuesday Audit

Microsoft released its September Patch Tuesday 2019 software updates and two advisories to address a total of 79 vulnerabilities in its Windows Operating sytems and other products.

Microsoft resolved a total of 79 unique vulnerabilities this month, including two actively exploited and three publicly dislosed vulnerabilities, all of which affect your Windows operating systems. As part of Tuesday Patch, Microsoft has fixed 4 vulnerabilities taht could allow remote code execution if were to connect to a malicious server.

Windows 10 Version 1703 End of Life

Image
Windows 10 Version 1703 End of Life

The Windows 10 version 1703 Enterprise and Education editions will reach End of Life on October 9, 2019, and you can't pay for patches either. The Home, Pro, Pro for Workstations, and IoT Core Editions of Windows 10 version 1703 reached End of Service last year, on October 8, 2018.

There is no extended support available for any edition of Windows 10, version 1703 and will no longer be supported after October 9, 2019. That means no more monthly security updates containing patches for the latest security threats. The announcement was published to alert Windows 10 users of version 1703 to update their devices to the latest version of Windows as soon as possible. Update to version 1903 before version 1703 reaches its end of life this October.

Let MJJT Consultants guide you with a walk-through for updating to the latest stable version of Windows. MJJT staff has the expertise to help all users still on Windows 10 version 1703 to u…
Image
Firefox 69 Update Fixes Critical Vulnerabilities

Mozilla has released the latest Firefox 69 browser update version, which will block thirdparty cookies and crypto miners and disables default support for Adobe Flash Player. The Firefox 69 browser update comes with a handful of security patches, which address one critical and eight high severity vulnerabilities. The critivalvulnerability CVE-2019-11751 enables malicious code through command line for Firefox browsers on Windows OS. As quoted by Mozzilla "logging-related command line parameters are not properly sanitized when Firefox is launched by another program, such as when a user clicks on malicious links in a chat application. This can be used to write a log file to an arbitrary location such as the Windows 'Startup' folder."

Patching new wormable vulnerabilities with your Microsoft Remote Desktop

Image
Patching new wormable vulnerabilities with your Microsoft Remote Desktop
Microsoft is urging users to patch a series of critical, BlueKeep-like vulnerabilities in Windows that could be used to spread malware and affect as many as 800 million machines.
Microsoft released a set of fixes for Remote Desktop Services that include two critical Remote Code Execution (RCE) vulnerabilities, CVE-2019-1181 and CVE-2019-1182. These two vulnerabilities are ‘wormable’, meaning that any future malware that exploits these could propagate from vulnerable computer to vulnerable computer without user interaction. The affected versions of Windows are Windows 7 SP1, Windows Server 2008 R2 SP1, Windows Server 2012, Windows 8.1, Windows Server 2012 R2, and all supported versions of Windows 10, including server versions. 
Microsoft not only released these 2 advisories, but they also released updates for 94 vulnerabilities. Of these vulnerabilities, 26 are classified as Critical, meaning that if these updates a…