Hello and welcome to the Wednesday, February 15th, 2020,

edition of the Sansonet Storms, and Stormcast, my name is Johannes Ulrich,

and today I'm recording from Jacksonville, Florida.

It's Microsoft Patch Tuesday, and well, we got a sort of interesting patch Tuesday.

Today, 80 patches is what I counted, or 80 vulnerabilities being patched. Now, this includes the chromium vulnerabilities that affect Microsoft Edge. You may see some different numbers, always being quoted here for the number of vulnerabilities and that's sort of one of the variables.

Nine of the vulnerabilities were rated as critical by Microsoft, and three vulnerabilities are already being exploited, but they're all rated important.

First, we do have CVE 2020, 23, 21715.

That is a Microsoft publisher bug,

and the basic problem here is that macros may be executed,

even though they're not supposed to be executed based on the stricter policies that Microsoft has recently established.

The second already exploited vulnerability is CVE 202023-23376.

That's a Windows Common Log, file, assistant driver, Elevation of Privilege Vulnerability.

And then we have the third one, that's CVE 202023, 21-823.

Now, this is one of those Windows graphics component remote code execution vulnerabilities.

The problem with this one is that this is sort of affecting also software written for Windows,

and the patch actually comes via the Microsoft Store, so make sure you have those updates enabled,

so they're not part of your standard patch set that you may download from Microsoft directly.

There are two vulnerabilities that I think are kind of also interesting.

They both have a high CBSS score in the sort of high 9s.

CVE 2023, 21803.

This is a Windows Ice Gassi Discovery Service remote code execution vulnerability.

Now, Ice Gussi is something that you typically only use sort of inside your network.

...