Hi Everyone,

This is Kelly Housman with the Microsoft Patch Tuesday newsletter for May 09, 2017. I want to thank everyone for their interest and responses for last month’s survey. I did get some great feedback. Ultimately though we’ve decided to discontinue the Monthly Patch Tuesday Newsletter. This was not an easy decision, but there were several factors that pushed towards the discontinuation. The MTIS reports issues, but the biggest reason was due to Microsoft’s new format. The layout here is the same information you can download directly from their Security Update site.

 

To Assist you going forward I’m including links to the sites where this information can be pulled from. There are a few sites you’ll want to bookmark and subscribe to:

Microsoft’s Security Update Guide  - This site allows you to create your own report similar to the newsletter, and download it to Excel for review. IMPORTANT

Microsoft’s Bulletins  - Go here and sign up for Microsoft’s notifications and advisory’s - IMPORTANT

Microsoft Security Advisory’s – Supplement to the bulletin’s, addresses security challenges that may not require a bulletin.

McAfee Labs Security Advisors –  Sign up here -  MTIS reports are uploaded here. If you sign up for the updates, you’ll get notified when new reports are loaded. - IMPORTANT

McAfee Labs Threat Reports - Get the latest information on current and trending threats!

 

This month I combined the CVE’s in each product category. On my Windows 10 test machine there were a total of 3 packages, the main roll up update, one for the MSRT tool, and one for FLASH. This information is published at: Intel Security Community blogs.

 

  CVE Information:

CVEs highlighted in red are rated Critical. As of this posting the MTIS reports have not been released yet for this month. Once they are released you’ll find them posted here. Please contact McAfee support for question/concerns about the MTIS reports. Website: https://support.mcafee.com Tel: 1-800-937-2237

CVE

CVE Title

Impact

Severity

McAfee Labs Security Advisory Number

McAfee Security Coverage

ADV170006

Adobe Flash Player

Remote Code Execution

Critical

Not posted Yet

Not posted Yet

CVE-2017-0064

Internet Explorer 11

Security Bypass

Important

 

 

CVE-2017-0077

  1. Dxgkrnl.sys Elevation of Privilege

Elevation of Privilege

Denial Of Service

Important

 

CVE-2017-0171

Windows DNS Server Denial of Service Vulnerability

Denial of Service

Important

 

 

CVE-2017-0175

CVE-2017-0220

CVE-2017-0244

CVE-2017-0258

CVE-2017-0259

Windows Kernel

Information Disclosure

Elevation of Privilege

Denial of Service

Important

 

 

CVE-2017-0190

Windows GDI

Information Disclosure

Important

 

 

CVE-2017-0212

Windows Hyper-V vSMB

Elevation of Privilege

Important

 

 

CVE-2017-0213

CVE-2017-0214

Windows COM

Elevation of Privilege

Important

 

 

CVE-2017-0221

CVE-2017-0224

CVE-2017-0227

CVE-2017-0229

CVE-2017-0230

CVE-2017-0231

CVE-2017-0233

CVE-2017-0234

CVE-2017-0235

CVE-2017-0236

CVE-2017-0240

CVE-2017-0241

CVE-2017-0266

Microsoft Edge

Remote Code Execution

Elevation of Privilege

Critical

Important

 

 

CVE-2017-0222

CVE-2017-0226

CVE-2017-0231

Internet Explorer

Remote Code Execution

Critical

 

 

CVE-2017-0228

CVE-2017-0238

Scripting Engine

Remote Code Execution

Critical

 

 

CVE-2017-0242

Microsoft ActiveX

Information Disclosure

Important

 

 

CVE-2017-0245

CVE-2017-0246

CVE-2017-0263

Win32k

Information Disclosure

Elevation of Privilege

Denial of Service

Important

 

 

CVE-2017-0248

.Net

Security Feature Bypass

Important

 

 

CVE-2017-0254

CVE-2017-0261

CVE-2017-0262

CVE-2017-0264

CVE-2017-0265

CVE-2017-0281

Microsoft Office

Remote Code Execution

Important

 

 

CVE-2017-0255

Microsoft SharePoint XSS Vulnerability

Elevation of Privilege

Important

 

 

CVE-2017-0267

CVE-2017-0268

CVE-2017-0269

CVE-2017-0270

CVE-2017-0271

CVE-2017-0272

CVE-2017-0273

CVE-2017-0274

CVE-2017-0275

CVE-2017-0276

CVE-2017-0277

CVE-2017-0278

CVE-2017-0279

CVE-2017-0280

Windows SMB

 

Remote Code Execution

Information Disclosure

Denial Of Service

Critical

Important

 

 

CVE-2017-0290

Microsoft Malware Protection Engine (Defender)

Remote Code Execution

Critical

 

 

May 2017 Security Update Release Notes:

 

The May security release consists of security updates for the following software:

  • Internet Explorer
  • Microsoft Edge
  • Microsoft Windows
  • Microsoft Office and Microsoft Office Services and Web Apps
  • NET Framework
  • Adobe Flash Player

In addition, Microsoft is releasing security updates for ASP.NET Core to address CVE-2017-0247, CVE-2017-0249, and CVE-2017-0256, and for .NET Core to address CVE-2017-0248. For more information see https://github.com/aspnet/Announcements/issues/239.

 

 

UPDATED: Memory Corruption Vulnerabilities:

McAfee is seeing many Memory Corruption Remote Code Execution vulnerabilities that affect a large number of products…not just those from Microsoft. This is an area where customers can see immediate value when using McAfee Host Intrusion Prevention. For example, by enabling protection and applying the Default IPS (Intrusion Prevention System) Rules policy, we have demonstrated that 90 percent or more of the Microsoft vulnerabilities listed in Patch Tuesday updates were shielded using this out-of-the-box basic protection level. HIPS is now part of McAfee Endpoint Security. Protection like exploit prevention is part of the Threat Prevention module, and host firewall is now a module within McAfee Endpoint Security.

 

For additional useful security information, please make note of the following links:

 

Safe Computing!

Thank you,

Kelly Housman