Six 0-Days Lead Microsoft’s August 2024 Patch Push
krebsonsecurity
|
Contributed by: Drex DeFord
Summary
Microsoft has released updates to address 90 security vulnerabilities in Windows and associated software, including six actively exploited zero-day flaws. These updates impact several Microsoft products such as Office, .NET, Visual Studio, Azure, Teams, and Windows itself. Notably, the zero-day flaws involve local privilege escalation and remote code execution vulnerabilities in components like the Windows Kernel, Edge browser's Internet Explorer Mode, and Microsoft Project. Although complex, these flaws are being actively exploited, underscoring the importance of timely updates. Additionally, Adobe released security updates for 71 vulnerabilities across multiple products. Users are advised to update their systems but may consider waiting a few days post-release and backing up data to prevent potential disruptions. For detailed insights, resources like the SANS Internet Storm Center and Askwoody.com are recommended.