Huge June Microsoft Security Update

By Editor
Guest Post
  Published 20 Jun 2017
Share this Article

{Guest post by Abdul}

Earlier this week Microsoft released their June security update that’s over twice the size of previous months. These updates fix around 90 vulnerabilities in Microsoft’s software, of which a third fix remote execution issues which allow malicious attackers to take control of systems.

We recommend installing all of these patches as soon as practical, however, there are a handful of significantly important patches that should take the highest priority and be applied immediately. Vulnerability CVE-2017-8543 which is already being exploited in the wild has similar characteristics to the vulnerability that lead to the wannacry epidemic, exploiting SMB protocols to send a request to the Windows search service. This vulnerability has a far wider reach however as it affects Server operating systems 2016, 2012 and 2008 as well as desktop operating systems 7, 8.1 and 10 as well as older systems still in use. Such is the critical nature of this vulnerability Microsoft has once again released a patch for those older unsupported Operating Systems.

CVE-2017-8527, CVE-2017-8464 and CVE-2017-8507 (for Outlook) also rank highly as vulnerabilities to close immediately.

Recent research has shown, that despite the headlines wannacry gained, there are still millions of devices globally left vulnerable, and this latest release from Microsoft highlights the importance of staying patched and having a thorough patch process in place.

If you still run unsupported operating systems like Windows XP and Server 2003 consider planning for their decommission as soon as you can and in the meantime ensure they are also part of that patch process.

If you have multiple Servers and PCs, it would be wise to consider investing in an automated system to handle all your updates and patches without the headache of manually updating. If you require more information regarding this then please don't hesitate to contact me orXC360 EA Ltdon 0726224052/0786260489, [email protected], www.xc360.co.ke

Don’t get caught out.

comments powered by Disqus