• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar

IT Breaking News

Latest information technology breaking news from around the world

  • Submit
  • Disclaimers
  • About
  • DMCA
  • Privacy Policy
  • Contact
  • Show Search
Hide Search

You are here: Home / Microsoft Patches New Wormable Bugs in Massive Security Update

Microsoft Patches New Wormable Bugs in Massive Security Update

· August 14, 2019 ·

Credit: ShutterstockIn the latest “Patch Tuesday” security fixes bundle, Microsoft included patches for two new critical Remote Code Execution (RCE) vulnerabilities (CVE-2019-1181 and CVE-2019-1182) in the Windows Remote Desktop Services.

Following the May disclosure of BlueKeep, after the company’s security team attempted to harden the Remote Desktop Services feature in Windows, Microsoft’s engineers found two other wormable bugs that attackers could exploit. 

The two vulnerabilities are part of 93 security vulnerabilities Microsoft and affect Windows 7 SP1, Windows Server 2008 R2 SP1, Windows Server 2012, Windows 8.1, Windows Server 2012 R2, as well as all versions of Windows 10, including the server ones. According to Microsoft, Windows XP, Windows Server 2003 and Windows Server 2008 and Remote Desktop Protocol itself are not affected by the vulnerabilities.

In a blog post this week, Microsoft said that it doesn’t believe that the vulnerabilities were being exploited in the wild by attackers. However, the company still urges everyone to update their systems immediately, as the bugs are every bit as dangerous as BlueKeep. 

Microsoft Patches 93 Vulnerabilities In Latest Windows Update

System administrators will have their hands full in the second part of this month, as Microsoft has released a batch of 93 security fixes, covering software, including Windows operating systems, Internet Explorer, Edge, ChakraCore, Microsoft Office, Microsoft Office Services and Web Apps, Azure DevOps Server, Visual Studio, Online Services and Microsoft Dynamics. Of the 93 bugs, about a third (29) are critical, while the other 64 are rated Important in severity.

Microsoft has recently complained that more than two-thirds of its Windows bugs are due to memory safety issues. The company said that it will experiment with replacing some parts of Windows code with code written in the Mozilla-sponsored Rust memory-safe programming language. In the meantime, the Microsoft Defender solution seems to be doing quite well in antivirus tests lately.

This week’s news comes on the heels of the revelation of BlueKeep, a pre-authentication wormable RCE into the Windows Remote Desktop Protocol (RDP), Microsoft issued multiple warnings to users and organizations to patch immediately, as attackers could wreak havoc with such a security flaw. At the time, Microsoft believed that over 1 million systems were vulnerable to the BlueKeep bug. Due to the nature of a how a worm (a type of malicious software that can replicate itself) jumps from one computer network to the next, computers inside private networks not normally exposed to the Internet could have also been compromised.


  • Microsoft is Still Making Security Updates for Windows XP, But You Can’t Have Them
  • Microsoft opens Chromium Edge bug bounty program with rewards up to $30,000
  • Microsoft's new Surface Pro has 13.5 hours of battery life and LTE option
  • Microsoft's New Edge Browser Logo Looks...NSFW to Me
  • Microsoft unveils new Edge browser logo that no longer looks like Internet Explorer
  • How Windows 7’s “Extended Security Updates” Will Work
  • Microsoft's new Surface Book update will fix sleep problems
  • How to Ensure Your Home Router Has the Latest Security Updates
  • Microsoft’s new Edge browser to launch January 15. Here’s what you need to know
  • Is Your Old Router Still Getting Security Updates?

Filed Under: Security security, Software, microsoft windows-wormable bugs cyber-security update, when microsoft releases patches, microsoft can't install important security updates on your pc, microsoft can't install important security updates, tuesday updates microsoft, microsoft security essentials en windows xp, 2018 updates for microsoft office, schoolgirls simulator new update, foreshadow microsoft patch, massive fortnite update, windows update 1803 whats new, manual update microsoft security essentials, ransomware microsoft patch, ransomware patch microsoft, zillow briar patch new port richey fl, new age for social security retirement, 4gb fallout new vegas updated v1.9, microsoft how to update windows 10, microsoft security essentials en windows 7, f secure update log, ms17-010 security update for microsoft windows smb server, meltdown microsoft patch kb, wannacry microsoft patch, content update fortnite patch notes, microsoft 0 day vulnerability patch, microsoft 5 new studios, microsoft word not working on mac after update, why installing security updates, bug proof security door

Primary Sidebar

RSS Recent Stories

  • The Biggest Tech Fails of 2019
  • What Drives the Tesla Superfans?
  • Elon Musk wins defamation case against “pedo guy”
  • TikTok is the best place on the internet. We should all delete it
  • Startups Weekly: U.S. VCs eye European startups
Copyright © 2019 IT Breaking News. Power by Wordpress.