Microsoft Patches More Than 60 Vulnerabilities Including Two Zero-Days
Microsoft released fixes for 67 vulnerabilities, including two zero-day flaws, this month. The first zero-day flaw that should be placed on the top of everyone’s patch list is CVE-2018-8174. This is a critical vulnerability in the VBScript scripting engine that affects all supported versions of Windows and could allow an attacker to remotely execute code on a vulnerable system. Chinese security firm Qihoo 360 disclosed the vulnerability last month and reported that a known advanced persistent threat (APT) actor has actively exploited the vulnerability via Internet Explorer and malicious Microsoft Office documents.
The second zero-day vulnerability, CVE-2018-8120, is an actively exploited privilege escalation flaw affecting Windows 7 and Windows Server 2008 systems. The vulnerability could allow an attacker to execute code in kernel mode, install programs, and create new accounts. It should also be prioritized to patch as soon as possible. This month’s update also addresses two crucial vulnerabilities that have been made public but are not currently exploited in the wild: CVE-2018-8170 and CVE-2018-8141.
More information on Microsoft’s May 2018 patches can be found at:
New Drupal Remote Code Execution Vulnerability Under Active Attack
Drupal’s security team disclosed a new remote code execution vulnerability under attack and is urging its customers to update to the latest version of Drupal immediately. The flaw, CVE-2018-7602, is different from the Drupalgeddon2 vulnerability (CVE-2018-7600) disclosed last month. The vulnerability affects Drupal versions 7.x and 8.x. It is recommended to update to versions 7.59 and 8.5.3 immediately. Drupal has also released a patch for those that cannot apply the update, but it will only successfully patch the new vulnerability if the fix for Drupalgeddon2 has been applied.
More information on this vulnerability can be found at:
Eight New Vulnerabilities Dubbed “Spectre Next Generation” Affect Intel and ARM Chips
Multiple security researching teams have identified eight new vulnerabilities affecting Intel processors and some ARM chips. Four of the new vulnerabilities have been classified as high severity, and the remaining four have been categorized as medium severity. Researchers report that the risk and attack scenarios are similar to the original Spectre flaw, but one of the new vulnerabilities can be exploited to execute arbitrary code in virtual machines and compromise the host system. Additionally, researchers have stated that the attack is relatively simple. Intel has reported that its team is working to release patches to address the vulnerabilities, but has not disclosed any details yet.
Additional information on this can be found at: