August Patch Bulletin

August Patch Bulletin

This month there are 94 unique CVE’s, 0 exploited or disclosed. We pay close attention to CVE-2019-1181CVE-2019-1182 – critical vulnerabilities very similar to ‘BlueKeep’ vulnerability and possibly wormable and CVE-2019-9511CVE-2019-9512CVE-2019-9513CVE-2019-9514CVE-2019-9518 – denial of service vulnerability.

CVE-2019-1181CVE-2019-1182

A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests. This vulnerability is pre-authentication and requires no user interaction. An attacker who successfully exploited this vulnerability could execute arbitrary code on the target system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

To exploit this vulnerability, an attacker would need to send a specially crafted request to the target systems Remote Desktop Service via RDP.

The update addresses the vulnerability by correcting how Remote Desktop Services handles connection requests.

CVE-2019-9511CVE-2019-9512CVE-2019-9513CVE-2019-9514CVE-2019-9518

A denial of service vulnerability exists in the HTTP/2 protocol stack (HTTP.sys) when HTTP.sys improperly parses specially crafted HTTP/2 requests. An attacker who successfully exploited the vulnerability could create a denial of service condition, causing the target system to become unresponsive.

To exploit this vulnerability, an unauthenticated attacker could send a specially crafted HTTP packet to a target system, causing the affected system to become nonresponsive.

The update addresses the vulnerability by modifying how the Windows HTTP protocol stack handles HTTP/2 requests. Note that the denial of service vulnerability would not allow an attacker to execute code or to elevate user rights.

For additional details, please find the information from Microsoft below:

Technology Products Affected SeverityReferenceWorkaround/Exploited/ Publicly Disclosed Vulnerability Info
Windows Windows 7, 8.1, 8.1 RT, 10
Server 2008/2008 R2
Sever 2012, 2012 R2
Server 2016
Server 2019
Critical CVE-2019-0714
CVE-2019-0715
CVE-2019-0716
CVE-2019-0717
CVE-2019-0718
CVE-2019-0720
CVE-2019-0723
CVE-2019-0736
CVE-2019-0965
CVE-2019-1057
CVE-2019-1078
CVE-2019-1125
CVE-2019-1143
CVE-2019-1144
CVE-2019-1145
CVE-2019-1146
CVE-2019-1147
CVE-2019-1148
CVE-2019-1149
CVE-2019-1150
CVE-2019-1151
CVE-2019-1152
CVE-2019-1153
CVE-2019-1154
CVE-2019-1155
CVE-2019-1156
CVE-2019-1157
CVE-2019-1158
CVE-2019-1159
CVE-2019-1161
CVE-2019-1162
CVE-2019-1163
CVE-2019-1164
CVE-2019-1168
CVE-2019-1169
CVE-2019-1170
CVE-2019-1171
CVE-2019-1172
CVE-2019-1173
CVE-2019-1174
CVE-2019-1175
CVE-2019-1176
CVE-2019-1177
CVE-2019-1178
CVE-2019-1179
CVE-2019-1180
CVE-2019-1181
CVE-2019-1182
CVE-2019-1183
CVE-2019-1184
CVE-2019-1185
CVE-2019-1186
CVE-2019-1187
CVE-2019-1188
CVE-2019-1190
CVE-2019-1198
CVE-2019-1206
CVE-2019-1212
CVE-2019-1213
CVE-2019-1222
CVE-2019-1223
CVE-2019-1224
CVE-2019-1225
CVE-2019-1226
CVE-2019-1227
CVE-2019-1228
CVE-2019-9506
CVE-2019-9512
CVE-2019-9513
CVE-2019-9514
CVE-2019-9518
Workaround: Yes
Exploited: No
Public: No
Information Disclosure
Elevation of Privilege
Remote Code Execution
Security Feature Bypass
Denial of Service
Tampering
Internet ExplorerIE 9,10,11 CriticalCVE-2019-1133
CVE-2019-1192
CVE-2019-1193
CVE-2019-1194
Workaround: No
Exploited: No
Public: No
Remote Code Execution
Security Feature Bypass
EdgeAllCriticalCVE-2019-1030
CVE-2019-1131
CVE-2019-1139
CVE-2019-1140
CVE-2019-1141
CVE-2019-1192
CVE-2019-1193
CVE-2019-1194
CVE-2019-1195
CVE-2019-1196
CVE-2019-1197
Workaround: No
Exploited: No
Public: No
Remote Code Execution
Information Disclosure
Security Feature Bypass
ChakraCoreAllCriticalCVE-2019-1131
CVE-2019-1139
CVE-2019-1140
CVE-2019-1141
CVE-2019-1195
CVE-2019-1196
CVE-2019-1197
Workaround: No
Exploited: No
Public: No
Remote Code Execution
Office, Office Services, and Web AppsExcel 2010, 2013, 2016
Lync 2013
Basic 2013 Office 2010, 2013, 2016, 2016 for Mac, 2019, 2019 for Mac
Outlook 2010, 2013, 2016, Android, iOS
SharePoint Enterprise 2013, Enterprise 2016, Foundation 2010, Foundation 2013, Server 2019
Office 365 ProPlus
Skype for Business 2016
CriticalADV190014
CVE-2019-1148
CVE-2019-1149
CVE-2019-1151
CVE-2019-1153
CVE-2019-1155
CVE-2019-1199
CVE-2019-1200
CVE-2019-1201
CVE-2019-1202
CVE-2019-1203
CVE-2019-1204
CVE-2019-1205
CVE-2019-1218
Workaround: No
Exploited: No
Public: No
Remote Code Execution
Spoofing
Elevation of Privilege
Information Disclosure
Visual StudioVisual Studio 2017, 2017 version 15.9, 2019 version 16.0, 2019 Version 16.2ImportantCVE-2019-1211Workaround: No
Exploited: No
Public: No
Elevation of Privilege
DynamicsDynamicsImportantCVE-2019-1229Workaround: No
Exploited: No
Public: No
Elevation of Privilege
Windows Windows 7, 8.1, 8.1 RT, 10
Server 2008/2008 R2
Sever 2012, 2012 R2
Server 2016
Server 2019
CriticalCVE-2019-0714
CVE-2019-0715
CVE-2019-0716
CVE-2019-0717
CVE-2019-0718
CVE-2019-0720
CVE-2019-0723
CVE-2019-0736
CVE-2019-0965
CVE-2019-1057
CVE-2019-1078
CVE-2019-1125
CVE-2019-1143
CVE-2019-1144
CVE-2019-1145
CVE-2019-1146
CVE-2019-1147
CVE-2019-1148
CVE-2019-1149
CVE-2019-1150
CVE-2019-1151
CVE-2019-1152
CVE-2019-1153
CVE-2019-1154
CVE-2019-1155
CVE-2019-1156
CVE-2019-1157
CVE-2019-1158
CVE-2019-1159
CVE-2019-1161
CVE-2019-1162
CVE-2019-1163
CVE-2019-1164
CVE-2019-1168
CVE-2019-1169
CVE-2019-1170
CVE-2019-1171
CVE-2019-1172
CVE-2019-1173
CVE-2019-1174
CVE-2019-1175
CVE-2019-1176
CVE-2019-1177
CVE-2019-1178
CVE-2019-1179
CVE-2019-1180
CVE-2019-1181
CVE-2019-1182
CVE-2019-1183
CVE-2019-1184
CVE-2019-1185
CVE-2019-1186
CVE-2019-1187
CVE-2019-1188
CVE-2019-1190
CVE-2019-1198
CVE-2019-1206
CVE-2019-1212
CVE-2019-1213
CVE-2019-1222
CVE-2019-1223
CVE-2019-1224
CVE-2019-1225
CVE-2019-1226
CVE-2019-1227
CVE-2019-1228
CVE-2019-9506
CVE-2019-9512
CVE-2019-9513
CVE-2019-9514
CVE-2019-9518
Workaround: No
Exploited: No
Public: Yes
Information Disclosure
Elevation of Privilege
Remote Code Execution
Security Feature Bypass
Denial of Service
Tampering
Internet ExplorerIE 9,10,11CriticalCVE-2019-1133
CVE-2019-1192
CVE-2019-1193
CVE-2019-1194
Workaround: No
Exploited: No
Public: No
Remote Code Execution
Security Feature Bypass
EdgeAllCriticalCVE-2019-1077
CVE-2019-1079
CVE-2019-1113
Workaround: No
Exploited: No
Public: No
Remote Code Execution
Information Disclosure
Security Feature Bypass
ChakraCoreAllCriticalCVE-2019-1131
CVE-2019-1139
CVE-2019-1140
CVE-2019-1141
CVE-2019-1195
CVE-2019-1196
CVE-2019-1197
Workaround: No
Exploited: No
Public: No
Remote Code Execution

In case of any questions or clarifications please feel free to reach out to ECHO’s Service Desk.