May, 2018: Patch Tuesday: Multiple 0 Day Vulnerabilities

Welcome to this May Patch Tuesday Bulletin. This month we have 69 unique CVE’s across 9 platforms. There were 7 platforms with critical updates, 2 platforms with important updates, and 2 vulnerabilities being exploited in the wild. Pay close attention to CVE-2018-8120 and  CVE-2018-8174 since they are being actively attacked.  CVE-2018-8120 is an elevation of privilege vulnerability that affects Windows 7 and Server 2008 hosts. Exploiting this vulnerability would require a local user to run a malicious application to elevate privileges. CVE-2018-8174 is a remote code execution vulnerability in the VBScript engine.  This vulnerability can be exploited by navigating to a malicious web page in Internet Explorer or by opening a malicioius office document.  Adobe Flash is affected by a critical vulnerability but Microsoft outlines a potential workaround that disables Adobe Flash in IE through group policy.

Over the years we've had millions of visitors to UltimateWindowsSecurity.com. Every month we have thousands and thousands of visitors to our Security Log Encyclopedia which documents all of the Security Log event ID’s for Windows Server OS’s. Back in 2007 when SharePoint added auditing capability, I realized that my audience not only needed the event information from SharePoint but I also found a similar need in SQL Server and Exchange. So not only did I document the data but I also started to develop the means to extract that event data from these applications so that it’s accessible and useable to the end user. Some 8 years later and LOGbinder is continuing to grow as companies realize LOGbinder bridges the gap between these applications and their infosec team. Visit LOGbinder.com to download a free 30-day fully functional trial and see the security event data that you have literally been missing.

So, without further ado, here’s the chart of MS patches this month.

Patch data provided by:

Technology

Products Affected

Severity

Reference

Workaround/ Exploited

Vulnerability Info

IE

IE 9, 10, 11

Critical

CVE-2018-0954

CVE-2018-0955

CVE-2018-1022

CVE-2018-1025

CVE-2018-8114

CVE-2018-8122

CVE-2018-8126

CVE-2018-8145

CVE-2018-8178

*Workaround: No

**Exploited: No

Remote Code Execution

Information Disclosure

Security Feature Bypass

 

Edge

All

Critical

CVE-2018-0943

CVE-2018-0945

CVE-2018-0946

CVE-2018-0951

CVE-2018-0953

CVE-2018-0954

CVE-2018-1021

CVE-2018-1022

CVE-2018-1025

CVE-2018-8112

CVE-2018-8123

CVE-2018-8128

CVE-2018-8130

CVE-2018-8133

CVE-2018-8137

CVE-2018-8139

CVE-2018-8145

CVE-2018-8178

CVE-2018-8179

 

*Workaround: No

**Exploited: No

Remote Code Execution

Information Disclosure

Security Feature Bypass

 

Windows

Server 2008, 2008 R2, 2012, 2012 R2, 2016

Windows 7, 8.1, 8.1 RT, 10

Critical

CVE-2018-0824

CVE-2018-0854

CVE-2018-0958

CVE-2018-0959

CVE-2018-8136

CVE-2018-0961

CVE-2018-8120**

CVE-2018-8124

CVE-2018-8127

CVE-2018-8129

CVE-2018-8132

CVE-2018-8134

CVE-2018-8141

CVE-2018-8142

CVE-2018-8164

CVE-2018-8165

CVE-2018-8166

CVE-2018-8167

CVE-2018-8170

CVE-2018-8174**

CVE-2018-8897

CVE-2018-1035

*Workaround: No

**Exploited: Yes

Remote Code Execution

Security Feature Bypass

Elevation of Privilege

Information Disclosure

 

Office, Office Services, Web Apps

Excel 2010, 2013, 2016

InfoPath 2013

Office 2010, 2013, 2016, 2016 for Mac

Office Web Apps Server 2010, 2013

Project Server 2010, 2013

SharePoint Server 2010, 2013, 2016

Word 2010, 2013, 2016

Important

CVE-2018-8147

CVE-2018-8148

CVE-2018-8149

CVE-2018-8150

CVE-2018-8155

CVE-2018-8156

CVE-2018-8157

CVE-2018-8158

CVE-2018-8160

CVE-2018-8161

CVE-2018-8162

CVE-2018-8163

CVE-2018-8168

CVE-2018-8173

*Workaround: No

**Exploited: No

Remote Code Execution

Elevation of Privilege

Security Feature Bypass

Information Disclosure

 

ChakraCore

All

Critical

CVE-2018-0943

CVE-2018-0945

CVE-2018-0946

CVE-2018-0953

CVE-2018-0954

CVE-2018-1022

CVE-2018-8128

CVE-2018-8130

CVE-2018-8133

CVE-2018-8137

CVE-2018-8139

CVE-2018-8145

CVE-2018-8177

CVE-2018-8178

*Workaround: No

**Exploited: No

Remote Code Execution

Information Disclosure

 

Adobe Flash Player

29.0.0.140 and earlier versions

Critical

ADV180008*

CVE-2018-4944*

*Workaround: Yes

**Exploited: No

Remote Code Execution

.NET Framework

.NET Core 2.0

.NET Framework 2.0, 3.0, 3.5, 3.5.1, 4.5.2, 4.6, 4.6.2, 4.7, 4.7.1, 4.7.2,

Important

CVE-2018-0765

CVE-2018-1039

*Workaround: No

**Exploited: No

Denial of Service

Security Feature Bypass

Exchange

Server 2010, 2013, 2016

Critical

CVE-2018-8151

CVE-2018-8152

CVE-2018-8153

CVE-2018-8154

CVE-2018-8159

 

*Workaround: No

**Exploited: No

Information Disclosure

Elevation of Privilege

Spoofing

Remote Code Execution

 

Windows Host Compute Service Shim

All

Critical

CVE-2018-8115

*Workaround: No

**Exploited: No

Remote Code Execution


Send me this chart next Patch Tuesday.
Email:

We will not share your address. Unsubscribe anytime. By clicking "Submit",
you're agreeing to our Privacy Policy and consenting to be contacted by us.