November, 2019: Patch Tuesday: Internet Explorer Exploited in the Wild

Welcome to this November Patch Tuesday Bulletin. This month there are patches for 8 products, 5 products with critical vulnerabilities, 75 CVE’s, 1 actively attacked vulnerability, and 1 publicly disclosed. Make sure that Internet Explorer is updated to the newest version since it suffers from the actively attacked vulnerability (CVE-2019-1429). A user would have to navigate to a malicious website or open malicious content in order to exploit IE. Make sure that Excel has been completely updated next. There is a security feature bypass vulnerability (CVE-2019-1457) that affects Office 2016/2019 for Mac. This could allow an attacker to execute a malicious macro if an end user was convinced to open an infected Excel worksheet. The remaining CVE’s were not known to be disclosed or attacked at this time.

Over the years we've had millions of visitors to UltimateWindowsSecurity.com. Every month we have thousands and thousands of visitors to our Security Log Encyclopedia which documents all of the Security Log event ID’s for Windows Server OS’s. Back in 2007 when SharePoint added auditing capability, I realized that my audience not only needed the event information from SharePoint but I also found a similar need in SQL Server and Exchange. So not only did I document the data but I also started to develop the means to extract that event data from these applications so that it’s accessible and useable to the end user. Some 8 years later and LOGbinder is continuing to grow as companies realize LOGbinder bridges the gap between these applications and their infosec team. Visit LOGbinder.com to download a free 30-day fully functional trial and see the security event data that you have literally been missing.

So, without further ado, here’s the chart of MS patches this month.

Patch data provided by:

Technology

Products Affected

Severity

Reference

Workaround/ Exploited

Vulnerability Info

Windows

Windows 7, 8.1, RT 8.1, 10

Server 2008, 2008 R2, 2012, 2012 R2, 2016, 2019

Critical

ADV190024

CVE-2018-12207

CVE-2019-0712

CVE-2019-0721

CVE-2019-11135

CVE-2019-1234

CVE-2019-1309

CVE-2019-1310

CVE-2019-1324

CVE-2019-1374

CVE-2019-1379

CVE-2019-1380

CVE-2019-1381

CVE-2019-1382

CVE-2019-1383

CVE-2019-1384

CVE-2019-1385

CVE-2019-1388

CVE-2019-1389

CVE-2019-1391

CVE-2019-1392

CVE-2019-1393

CVE-2019-1394

CVE-2019-1395

CVE-2019-1396

CVE-2019-1397

CVE-2019-1398

CVE-2019-1399

CVE-2019-1405

CVE-2019-1406

CVE-2019-1407

CVE-2019-1408

CVE-2019-1409

CVE-2019-1411

CVE-2019-1412

CVE-2019-1415

CVE-2019-1416

CVE-2019-1417

CVE-2019-1418

CVE-2019-1419

CVE-2019-1420

CVE-2019-1422

CVE-2019-1423

CVE-2019-1424

CVE-2019-1430

CVE-2019-1432

CVE-2019-1433

CVE-2019-1434

CVE-2019-1435

CVE-2019-1436

CVE-2019-1437

CVE-2019-1438

CVE-2019-1439

CVE-2019-1440

CVE-2019-1441

CVE-2019-1454

CVE-2019-1456

*Workaround: No

**Public: No

Exploited: No

Information Disclosure

Spoofing

Denial of Service

Elevation of Privilege

Remote Code Execution

Security Feature Bypass

 

Internet Explorer

IE 9, 10, 11

Critical

CVE-2019-1390

CVE-2019-1429

*Workaround: No

**Public: No

Exploited: Yes

Remote Code Execution

Edge

Microsoft Edge (EdgeHTML-based)

Critical

CVE-2019-1413

CVE-2019-1426

CVE-2019-1427

CVE-2019-1428

*Workaround: No

**Public: No

Exploited: No

Security Feature Bypass

Remote Code Execution

ChakraCore

All

Critical

CVE-2019-1426

CVE-2019-1427

CVE-2019-1428

*Workaround: No

**Public: No

Exploited: No

Remote Code Execution

Office, Office Services, Office Web Apps

Office 365 ProPlus

SharePoint Server 2019, Foundation 2010/2013, Enterprise 2013/2016

Office 2010, 2013, 2016, 2016 for Mac, 2019, 2019 for Mac

Excel 2010, 2013, 2016, 2016 for Mac

Important

CVE-2019-1402

CVE-2019-1442

CVE-2019-1443

CVE-2019-1445

CVE-2019-1446

CVE-2019-1447

CVE-2019-1448

CVE-2019-1449

**CVE-2019-1457

*Workaround: No

**Public: Yes

Exploited: No

Information Disclosure

Security Feature Bypass

Spoofing

Remote Code Execution

Exchange Server

Exchange Server 2013, 2016, 2019

Critical

CVE-2019-1373

*Workaround: No

**Public: No

Exploited: No

Remote Code Execution

Visual Studio

Visual Studio Code, 2017, 2019

Important

CVE-2019-1425

CVE-2019-1414

*Workaround: No

**Public: No

Exploited: No

Elevation of Privilege

Azure Stack

All

Important

CVE-2019-1234

*Workaround: No

**Public: No

Exploited: No

Spoofing