Microsoft patches recent ALPC zero-day in September 2018 Patch Tuesday updates

More from: | ZDNET |

The monthly Microsoft security updates –known as the Patch Tuesday updates– are out, and this month, the OS maker has fixed 62 security flaws, including a recent zero-day vulnerability that was dumped on Twitter last month, and later adopted by a malware campaign.

This month, patches were made available for products such as Microsoft Windows, Microsoft Edge, Internet Explorer, ASP.NET, the .NET Framework, Edge’s ChakraCore component, Adobe Flash Player, Microsoft.Data.OData, Microsoft Office, and Microsoft Office Services and Web Apps.

Of all the 62 fixes, the most important was the one tracked as CVE-2018-8440. This vulnerability, as discussed at the time in a more detailed article, allows malware or an attacker already present on a system to gain SYSTEM-level access by


Read full article »

About | ZDNET |

ZDNet brings together the reach of global and the depth of local, delivering 24/7 news coverage and analysis on the trends, technologies and opportunities that matter to IT professionals and decision makers.

Whatever your role in the IT buying cycle, ZDNet provides support -- from investigating options to optimizing a solution. Whether you want to follow hot topics or emerging trends, or keep up to date with the latest news and events, ZDNet is the destination for professionals seeking to research technology-related issues, and solve business technology problems.

»Twitter: @zdnet »Facebook: @ZDNet