Microsoft today rolling out its October 2019 Patch Tuesday security updates to fix a total of 59 vulnerabilities in Windows operating systems and related software, 9 of which are rated as critical, 49 are important, and one is moderate in severity.
What’s good about this month’s patch update is that after a very long time, none of the security vulnerabilities patched by the tech giant this month is being listed as publicly known or under active attack.
Moreover, there is no roll-up patch for Adobe Flash Player bundled in Windows update for this month.
Besides this, Microsoft has also put up a notice as a reminder for Windows 7 and Windows Server 2008 R2 users, warning them that the extended support for these two operating systems is about to end in the next two months and that they will no longer receive updates as of January 14, 2020.
Two of the critical vulnerabilities patched this month are remote code execution flaws in the VBScript engine, and both exist in the way VBScript handles objects in memory, allowing attackers to corrupt memory and execute arbitrary code in the context of the current user.
These two vulnerabilities, tracked as CVE-2019-1238 and CVE-2019-1239,…
http://feedproxy.google.com/~r/TheHackersNews/~3/mBcIeq-jiwk/microsoft-patch-tuesday-october.html