Hello and welcome to the Wednesday, January 10th, 2020,

for edition of the Sansonet Storm Center's Stormcast.

My name is Johannes Ulrich, and today I'm recording from Jacksonville, Florida.

It's Microsoft Patch Tuesday, and with that, the first Microsoft Patch Tuesday of 2024.

Hope it's a sign of future patch Tuesdays,

but we got less patches than normal and less severe patches than normal.

48 patches total for Microsoft products,

only four additional patches that affect chromium and with

that Microsoft Edge. Also, one open source vulnerability being patched here, the Stranger

Strings sequel Light vulnerability. That vulnerability actually sort of became known in 2022, but none of the

vulnerabilities that were patched today were disclosed prior to the patch being released or

exploited prior to today. So what about the two critical vulnerabilities? There was a remote code

execution vulnerability in Windows HyperV,

always, of course, critical if you're using that particular product.

And then probably affecting a larger number of users here, also having a CVSS score of 9.0,

a security bypass vulnerability in Windows Kerbara. Windows Kerberos, of course,

beings of the authentication access control backbone for many Windows networks, this particular

vulnerability would allow an attacker to bypass authentication by impersonating the Kerberos server. Requires a machine in the middle position

in order to exploit this vulnerability, but again, that's not really a stretch here. These types

of vulnerabilities are typically exploited after sort of the parameters being breached and the attacker

already has a foothold in the network

and then needs to sort of perform some lateral movement and that vulnerability will fit right

...