Microsoft's Patch Tuesday deals with Badlock Bug

Industry experts weigh in on what they think of this Patch Tuesday

Microsoft has moved to fix 13 problems affecting its products, including a patch for the infamous Badlock bug that has been plaguing Samba.

The update addresses a number of issues, six of which are classified as critical.

As noted in Microsoft's bulletins, 31 specific vulnerabilities were dealt with today's patch. All of which were problems that could have resulted in remote code execution, elevation of privilege, denial of service or a security feature bypass with the absence of the patch.

Advertisement - Article continues below

Eight of the flaws are associated with Badlock, but experts are mostly in agreement that things are not as bad as initially thought.

The vulnerability (MS16-047 / CVE-2016-0128) is a man in the middle (MITM) attack on specific RPC traffic. An attacker that's properly placed can listen in on RPC traffic and force a session to downgrade its authentication level.

"This allows a basic hijack of the session and a privilege escalation that could allow an attacker to full access to administrative tasks and the user database (SAM) on the remote server," said Trustwave's threat intelligence manager Karl Sigler.

"This is certainly a concern and admins should patch their systems as early as possible. However, I can't say that this vulnerability rises to any level that deserves the focus that a dedicated website and three weeks of buildup have given Badlock."

Advertisement
Advertisement - Article continues below

MS16-037 is a cumulative security update for Internet Explorer. The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user, according to Siglar.

Advertisement - Article continues below

There was also a cumulative update for the Edge browser too. MS16-038 could allow remote code execution if a user views a specially crafted webpage using Microsoft Edge.

There were also updates for the Microsoft Graphics Component (MS16-039) that affected editions of Microsoft Office 2007 and Microsoft Office 2010. There was also an update for Microsoft XML Core Service, rated critical, on all supported releases of Microsoft Windows.

Other updates covered the .NET Framework, Office, Windows OLE, Hyper-V and a host of other security issues.

Featured Resources

Staying ahead of the game in the world of data

Create successful marketing campaigns by understanding your customers better

Download now

Remote working 2020: Advantages and challenges

Discover how to overcome remote working challenges

Download now

Keep your data available with snapshot technology

Synology’s solution to your data protection problem

Download now

After the lockdown - reinventing the way your business works

Your guide to ensuring business continuity, no matter the crisis

Download now
Advertisement

Recommended

How many call participants is too many?
video conferencing

How many call participants is too many?

7 Aug 2020
Trump’s demand for cut of TikTok sale could face legal challenge
social media

Trump’s demand for cut of TikTok sale could face legal challenge

5 Aug 2020
Microsoft tripled bug bounty payouts to $13.7m last year
vulnerability

Microsoft tripled bug bounty payouts to $13.7m last year

5 Aug 2020
Microsoft won't reopen its offices until January 2021
Business operations

Microsoft won't reopen its offices until January 2021

3 Aug 2020

Most Popular

How to find RAM speed, size and type
Laptops

How to find RAM speed, size and type

3 Aug 2020
How to use Chromecast without Wi-Fi
Mobile

How to use Chromecast without Wi-Fi

4 Aug 2020
How do you build a great customer experience?
Sponsored

How do you build a great customer experience?

20 Jul 2020