Recent News
Microsoft February 2021 Patch Tuesday fixes 56 bugs, including Windows zero-day

Microsoft today released its monthly batch of security updates, known as Patch Tuesday. This month, the operating system manufacturer fixed 56 security vulnerabilities, including a Windows bug that was being exploited before today’s patches.

Tracked as CVE-2021-1732, Windows zero day is an elevation of privilege bug in Win32k, a central component of the Windows operating system.

The bug was exploited after attackers gained access to a Windows system to gain access at the SYSTEM level.

Details about the attacks where this bug was used were not revealed. Microsoft credited three security researchers at Chinese security firm DBAPPSecurity with discovering the attacks on which day zero was employed.

MANY DETAILS OF THE BUG WERE PUBLIC
In addition to the zero day, this month’s Patch Tuesday also stands out because of the high number of vulnerabilities whose details were made public even before patches were available.

In total, six Microsoft product bugs had their details posted online before today’s patches. This included:

The good news is that none of these bugs were exploited by attackers, despite their details being posted online.

But that is not all. This month, Microsoft also released fixes for three vulnerabilities in the Windows TCP / IP stack, which allows the operating system to connect to the Internet.

Two of these bugs (CVE-2021-24074, CVE-2021-24094) apply fixes for remote code execution vulnerabilities that could allow attackers to control Windows systems remotely.

A third bug (CVE-2021-24086) can be used to lock Windows devices.

“The two vulnerabilities in RCE are complex, which makes it difficult to create functional exploits, so they are not likely to be exploited in the short term,” said Microsoft in a blog published specifically to warn of these three problems.

“We believe that attackers will be able to create DoS exploits much more quickly and we hope that all three problems can be exploited with a DoS attack shortly after launch,” added the company. “Therefore, we recommend that customers quickly apply Windows security updates this month.”

Of all Windows systems, Windows Server instances are the most susceptible to attack, as many are used to host Web servers or cloud infrastructure and are almost certainly connected to the Internet all the time and exposed to attack.

“It is essential that customers apply Windows updates to address these vulnerabilities as quickly as possible,” said Microsoft.

If patches cannot be applied immediately, several workarounds can be implemented, details in each vulnerability warning.

Below are additional details about today’s Microsoft Patch Tuesday and security updates released by other tech companies:

  • Microsoft’s official Security Update Guide portal lists all security updates in a filterable table.
  • ZDNet has published this file listing all this month’s security advisories on one single page.
  • Adobe’s security updates are detailed here.
  • SAP security updates are available here.
  • Intel security updates are available here.
  • VMWare security updates are available here.
  • Chrome 88 security updates are detailed here.
  • Android security updates are available here.
TagCVE IDCVE Title
.NET CoreCVE-2021-26701.NET Core Remote Code Execution Vulnerability
.NET CoreCVE-2021-24112.NET Core Remote Code Execution Vulnerability
.NET Core & Visual StudioCVE-2021-1721.NET Core and Visual Studio Denial of Service Vulnerability
.NET FrameworkCVE-2021-24111.NET Framework Denial of Service Vulnerability
Azure IoTCVE-2021-24087Azure IoT CLI extension Elevation of Privilege Vulnerability
Developer ToolsCVE-2021-24105Package Managers Configurations Remote Code Execution Vulnerability
Microsoft Azure Kubernetes ServiceCVE-2021-24109Microsoft Azure Kubernetes Service Elevation of Privilege Vulnerability
Microsoft DynamicsCVE-2021-24101Microsoft Dataverse Information Disclosure Vulnerability
Microsoft DynamicsCVE-2021-1724Microsoft Dynamics Business Central Cross-site Scripting Vulnerability
Microsoft Edge for AndroidCVE-2021-24100Microsoft Edge for Android Information Disclosure Vulnerability
Microsoft Exchange ServerCVE-2021-24085Microsoft Exchange Server Spoofing Vulnerability
Microsoft Exchange ServerCVE-2021-1730Microsoft Exchange Server Spoofing Vulnerability
Microsoft Graphics ComponentCVE-2021-24093Windows Graphics Component Remote Code Execution Vulnerability
Microsoft Office ExcelCVE-2021-24067Microsoft Excel Remote Code Execution Vulnerability
Microsoft Office ExcelCVE-2021-24068Microsoft Excel Remote Code Execution Vulnerability
Microsoft Office ExcelCVE-2021-24069Microsoft Excel Remote Code Execution Vulnerability
Microsoft Office ExcelCVE-2021-24070Microsoft Excel Remote Code Execution Vulnerability
Microsoft Office SharePointCVE-2021-24071Microsoft SharePoint Information Disclosure Vulnerability
Microsoft Office SharePointCVE-2021-1726Microsoft SharePoint Spoofing Vulnerability
Microsoft Office SharePointCVE-2021-24066Microsoft SharePoint Remote Code Execution Vulnerability
Microsoft Office SharePointCVE-2021-24072Microsoft SharePoint Server Remote Code Execution Vulnerability
Microsoft TeamsCVE-2021-24114Microsoft Teams iOS Information Disclosure Vulnerability
Microsoft Windows Codecs LibraryCVE-2021-24081Microsoft Windows Codecs Library Remote Code Execution Vulnerability
Microsoft Windows Codecs LibraryCVE-2021-24091Windows Camera Codec Pack Remote Code Execution Vulnerability
Role: DNS ServerCVE-2021-24078Windows DNS Server Remote Code Execution Vulnerability
Role: Hyper-VCVE-2021-24076Microsoft Windows VMSwitch Information Disclosure Vulnerability
Role: Windows Fax ServiceCVE-2021-24077Windows Fax Service Remote Code Execution Vulnerability
Role: Windows Fax ServiceCVE-2021-1722Windows Fax Service Remote Code Execution Vulnerability
Skype for BusinessCVE-2021-24073Skype for Business and Lync Spoofing Vulnerability
Skype for BusinessCVE-2021-24099Skype for Business and Lync Denial of Service Vulnerability
SysInternalsCVE-2021-1733Sysinternals PsExec Elevation of Privilege Vulnerability
System CenterCVE-2021-1728System Center Operations Manager Elevation of Privilege Vulnerability
Visual StudioCVE-2021-1639Visual Studio Code Remote Code Execution Vulnerability
Visual Studio CodeCVE-2021-26700Visual Studio Code npm-script Extension Remote Code Execution Vulnerability
Windows Address BookCVE-2021-24083Windows Address Book Remote Code Execution Vulnerability
Windows Backup EngineCVE-2021-24079Windows Backup Engine Information Disclosure Vulnerability
Windows Console DriverCVE-2021-24098Windows Console Driver Denial of Service Vulnerability
Windows DefenderCVE-2021-24092Microsoft Defender Elevation of Privilege Vulnerability
Windows DirectXCVE-2021-24106Windows DirectX Information Disclosure Vulnerability
Windows Event TracingCVE-2021-24102Windows Event Tracing Elevation of Privilege Vulnerability
Windows Event TracingCVE-2021-24103Windows Event Tracing Elevation of Privilege Vulnerability
Windows InstallerCVE-2021-1727Windows Installer Elevation of Privilege Vulnerability
Windows KernelCVE-2021-24096Windows Kernel Elevation of Privilege Vulnerability
Windows KernelCVE-2021-1732Windows Win32k Elevation of Privilege Vulnerability
Windows KernelCVE-2021-1698Windows Win32k Elevation of Privilege Vulnerability
Windows Mobile Device ManagementCVE-2021-24084Windows Mobile Device Management Information Disclosure Vulnerability
Windows Network File SystemCVE-2021-24075Windows Network File System Denial of Service Vulnerability
Windows PFX EncryptionCVE-2021-1731PFX Encryption Security Feature Bypass Vulnerability
Windows PKU2UCVE-2021-25195Windows PKU2U Elevation of Privilege Vulnerability
Windows PowerShellCVE-2021-24082Microsoft.PowerShell.Utility Module WDAC Security Feature Bypass Vulnerability
Windows Print Spooler ComponentsCVE-2021-24088Windows Local Spooler Remote Code Execution Vulnerability
Windows Remote Procedure CallCVE-2021-1734Windows Remote Procedure Call Information Disclosure Vulnerability
Windows TCP/IPCVE-2021-24086Windows TCP/IP Denial of Service Vulnerability
Windows TCP/IPCVE-2021-24074Windows TCP/IP Remote Code Execution Vulnerability
Windows TCP/IPCVE-2021-24094Windows TCP/IP Remote Code Execution Vulnerability
Windows Trust Verification APICVE-2021-24080Windows Trust Verification API Denial of Service Vulnerability

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.