Threat Level: green Handler on Duty: Manuel Humberto Santander Pelaez

SANS ISC: Microsoft and Adobe Patch Tuesday, October 2016 SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Microsoft and Adobe Patch Tuesday, October 2016

Microsoft published nine bulletins plus one bulletin affecting Adobe Flash. These bulletins fix 43 vulnerabilities in Microsoft software, and  11 in Flash.

Several of the bulletins address vulnerabilities that are already exploited in the wild. Most of these vulnerabilities are information disclosure vulnerabilities. One of them, CVE-2016-3393 is a remote code execution vulnerability which is why I labeled it as "Patch Now".

For more details, see how summary here: 

https://isc.sans.edu/mspatchdays.html?viewday=2016-10-11

or our API for automatic processing of the data.

https://isc.sans.edu/api/getmspatchday/2016-10-11

---
Johannes B. Ullrich, Ph.D.
STI|Twitter|LinkedIn

I will be teaching next: Defending Web Applications Security Essentials - SANS San Francisco Winter 2019

Johannes

3678 Posts
ISC Handler
MS16-124 should have KB article associated with it:
https://support.microsoft.com/en-us/kb/3193227
(currently just says "KB0").
Anonymous

Sign Up for Free or Log In to start participating in the conversation!