Hello, welcome to the Wednesday, December 11th, 2019 edition of the Sandsenet Storms, Stormcast.

My name is Johannes Ulrich, and I'm recording from Jacksonville, Florida.

Well, today is, of course, Microsoft's patch Tuesday, but we also got then somewhat normal updates from Adobe. What's sort of a little bit surprised here, we also got somewhat normal updates from Adobe.

What's sort of a little bit surprised here, we also got updates from Apple.

Apple pretty much updated everything.

So let's start with Microsoft.

I would rate Microsoft's patch Tuesday as overall average 36 vulnerabilities were fixed.

Out of those 36, there are seven critical ones and one, and that's of the interesting part here,

that already was being exploited according to Microsoft.

The vulnerability already got exploited is CVE 2019, 1458 and it is a vulnerability that allows

approach escalation, so that's why Microsoft rates it as important.

What's sort of a little bit interesting here is that Kaspersky Labs reported this vulnerability

originally and apparently they found it in the wild being exploited in conjunction with

a Google Chrome Zero Day that was patched in November.

With both vulnerabilities being patched, Kaspersky released details about this particular

exploit.

They're calling this Operation Wizard opium and it did affect a Korean news site.

So essentially what happened here is this Korean news site got compromised and JavaScript

was added to their page.

This JavaScript then used the Chrome vulnerability in order to be able to execute code on the

victim system and then the approach escalation

vulnerability in Windows in order to gain system access.

...