Hello, welcome to the Wednesday, February 13th, 2019 edition of the Sansonet Storm Center's Stormcast. My name is Johannes Ulrich.

I'm recording from Jacksonville, Florida.

Today's big news, Microsoft's patch Tuesday, we got patches for a total of 74 different vulnerabilities, with 21 of the

vulnerabilities being labeled as critical.

Now as common in recent patch Tuesdays, there is a strong concentration of these critical

vulnerabilities in the scripting engine.

So again, these are remote code execution vulnerabilities for the most part that could be

executed via the web browser.

By the addition, we got a couple other interesting and noteworthy bulletins and patches.

First of all, the Microsoft Exchange privilege escalation issue that has been sort of now wrapped

into Patch Tuesday, but no real new information here.

Then we also have vulnerability against the DHCP server. Now last month we had a critical vulnerability against the DHCP server. Now, last month, we had a critical vulnerability

against the DHCP client. This time it's the server, which of course, well, it's a little bit more

tricky because if someone exploits your DHCP server, they have quite a bit of access to

the remainder of your network.

On the other hand, the HCP servers aren't really ever exposed to the outside because

that typically would tend to break things.

Microsoft, on the other hand, considers exploitation and the availability of an exploit for this

issue to be less likely.

Now there also is remote code execution vulnerability in SharePoint.

And SharePoint is often exposed externally.

However, to exploit this vulnerability, someone has to upload a SharePoint application package.

...