Welcome to this December Patch Tuesday Bulletin, the last for 2019! This month was lighter than recent months in total CVE’s as well as technologies affected. There were 37 CVE’s, 2 technologies with critical severity vulnerabilities, 1 CVE exploited, and no vulnerabilities that are public or with workarounds. Focus this month on CVE-2019-1458 which is an elevation of privilege vulnerability that has been known to be exploited in the wild. An adversary would need local access to a machine and the ability to run a malicious application to exploit this vulnerability. An interesting note this month is a vulnerability for Windows XP was identified but will not patched. If you happen to be running XP then take a look at CVE-2019-1489. Microsoft will not provide an update and recommends upgrading to a supported version of software.

Over the years we've had millions of visitors to UltimateWindowsSecurity.com. Every month we have thousands and thousands of visitors to our Security Log Encyclopedia which documents all of the Security Log event ID’s for Windows Server OS’s. Back in 2007 when SharePoint added auditing capability, I realized that my audience not only needed the event information from SharePoint but I also found a similar need in SQL Server and Exchange. So not only did I document the data but I also started to develop the means to extract that event data from these applications so that it’s accessible and useable to the end user. Some 8 years later and LOGbinder is continuing to grow as companies realize LOGbinder bridges the gap between these applications and their infosec team. Visit LOGbinder.com to download a free 30-day fully functional trial and see the security event data that you have literally been missing.

So, without further ado, here’s the chart of MS patches this month.