Watch Out! Calm Patch Tuesday Includes Sleeper Vulnerability

Vulnerability only listed as important, not critical, by vendor, but could have huge impact

ALISO VIEJO, Calif. - Oct. 9, 2019 - PRLog -- Verismic, a global leader in cloud-based IT management and security technology, has released its latest Patch Tuesday assessment. The October 2019 Patch Tuesday from Microsoft only includes 59 updates, much less than last month's release of 80 updates. However, this doesn't mean IT departments should be complacent, here are still nine updates listed as critical and 49 listed as important.

CVE-2019-1367, originally released as an out of band security update last month, has been re-released and is actively being weaponized. Following several misguided attempts to re-assure customers, Microsoft released it to WSUS on October 7th and have released it again on the 8th. They also noted the updated patch addresses some 'quality issues' in the first versions. Customers of Cloud Management Suite had all versions available to them, including the uninstalls.

Robert Brown, Director of Services at Verismic noted, "Our customers can be confident that when they use Cloud Management Suite, our expert onboarding team helps implement a successful patching strategy tailored to the customers environment, including the ability to roll back problematic updates."

CVE-2019-1311 is only marked as Important, but we believe this could have a huge impact if not addressed. It carries a CVSS score of 7.8 and, if exposed, could allow a sophisticated attack using the same credentials as the victim. What makes this ultra-important for IT departments, is that in order to exploit the vulnerability, an attacker would only have to convince a user to open a specially crafted .WIM file. If you are concerned about moving to newer versions of Windows 10 and being vulnerable to the same attack, we recommend this update be prioritized.

Read the full October Patch Tuesday assessment here: https://www.cloudmanagementsuite.com/october-patch-tuesday-2019

About Verismic Software, Inc.

Verismic Software Inc. is a global industry leader providing cloud-based IT management and security technology focused on enabling greater efficiency, cost-savings and security control for users, all while engaging in endpoint management. Headquartered in Aliso Viejo, Calif., Verismic is a growing and dynamic organization with offices in four countries and 12 partners in nine countries. Verismic works with companies ranging from 50 to 10,000 endpoints delivering a variety of solutions. Verismic's software portfolio includes the first-of-its-kind agentless, Cloud Management Suite (CMS); For more information, visit www.cloudmanagementsuite.com.

Contact
Heidi Smith
***@verismic.com


Photos: (Click photo to enlarge)



Click to Contact
Latest News

Huawei exec: Chinese tech giant wants to be 'transparent'

Oct 23, 2019

WASHINGTON — A top executive of Chinese tech giant Huawei said Friday that the company is prepared to be "open and transparent" as it looks to persuade the U.S. government that it can be trusted and that national security concerns about its technology are unfounded. "The first thing we need to do is we need to demystify this company," Paul Scanlan, chief technology officer of Huawei's carrier business group, said in an interview with The Associated Press. "We are a Chinese company, we are based in China, the majority of the people are ethnically Chinese, so there's nothing to say...

Native American group seeks to slow Alamo church renovation

Oct 23, 2019

SAN ANTONIO — A Native American group is calling on officials to slow down the renovation of the Alamo church in San Antonio, after archaeological reports showed human remains were found at the property. The Tap Pilam Coahuiltecan Nation filed a federal lawsuit last month seeking to halt the $450 million makeover of the sacred shrine that's on track to be completed by 2024. The San Antonio Express-News reports the group wants a say in what happens to unearthed human remains because many group members are descendants of people who lived near the site. Ramón Vásquez, an executive member of...

China criticizes Apple for app that tracks Hong Kong police

Oct 23, 2019

HONG KONG — Apple became the latest company targeted for Chinese pressure over protests in Hong Kong after the ruling Communist Party's main newspaper criticized the tech giant Wednesday for a smartphone app that allows activists to report police movements. HKmap.live, designed by an outside supplier and available on Apple Inc.'s online store, "facilitates illegal behavior," the People's Daily said in a commentary. "Is Apple guiding Hong Kong thugs?" the newspaper said. Beijing has pressed companies including Hong Kong's Cathay Pacific Airways to take the government's side against the protests, which are in their fourth month. Apple didn't immediately respond...

APNewsBreak: US government unveils final Utah monument plan

Oct 23, 2019

SALT LAKE CITY — The U.S. government's final management plan for land in and around a Utah national monument that President Donald Trump downsized doesn't include many new protections for the cliffs, canyons, waterfalls and arches found there, but it does include a few more safeguards than were in a proposal issued last year. The Bureau of Land Management's plan for the Grand Staircase-Escalante National Monument in southwestern Utah codifies that the lands cut out of the monument will be open to mineral extraction such as oil, gas and coal as expected, according to a plan the agency provided to...

Shard reveals how Cyprus' ancient kingdoms managed economy

Oct 23, 2019

NICOSIA, Cyprus — The discovery of a small clay shard inscribed with a partial inventory of goods at a 2,500-year-old citadel suggests that Cyprus' ancient city states "more than likely" managed their economies using a homegrown system, not an imported one, an archaeologist said Wednesday. University of Cyprus Professor Maria Iacovou told The Associated that the recent discovery at the ancient kingdom of Paphos on Cyprus' southwestern coast refutes the notion that Cypriot city states managed their economies based on systems brought over from foreign kingdoms, like those of neighboring Phoenician city states. The inscription on the shard was in...

About Us

Science Thread delivers quality and fascinating science and technology content that matters on a daily basis and makes it go viral.