Hello, welcome to the Wednesday, September 11th, 2019 edition of the Sandson and Storm Center's Stormcast.

My name is Johannes Ulrich.

And then I'm recording from Sevalde, Germany.

Microsoft Patch Tuesday, of course, at the top of the news today.

And for September, we got patches for 79 different vulnerabilities.

Two of these patches have already been exploited and three had been previously disclosed.

Now as far as the exploited vulnerabilities go, one of them affects the Windows Common log file system driver.

We had some problems with this in the past.

The second one, well, good old Winsock, is actually affected by this.

Both are approach escalation vulnerability, so a local attacker after getting some access to the system

could run processes using elevated privileges.

19 of the vulnerabilities are rated as critical. Now, four of them are in the remote desktop client.

These are remote code execution vulnerabilities, but don't mix them up

with these blue keep vulnerabilities. This is in the client, so it does require that a victim

would connect to a malicious remote desktop server. And while five of the cradle vulnerabilities

are still in the chakra scripting engine, this I think is sort of low compared to other months.

Renato Marino, who did assemble this month's summary for us, picked one vulnerability that I also think is somewhat interesting and that's a remote code

execution vulnerability in how link files are being processed CV 2019 1280 now link files have been

abused in the past heavily there have been been other vulnerabilities. So certainly this is

something I think that's worthwhile watching. And then unlike last month, one of the critical

vulnerabilities also goes to the Adobe Flash update, actually two individual

vulnerabilities affected by this. Both are arbitrary code

...