High Threat Security Alert (A20-02-03): Multiple Vulnerabilities in Microsoft Products (February 2020)

Description:

Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components. The list of security updates can be found at:

https://support.microsoft.com/en-us/help/20200211/security-update-deployment-information-february-11-2020

Reports indicate that active exploitation against the vulnerability in Microsoft Internet Explorer (CVE-2020-0674) for remote code execution have been observed. Users are advised to take immediate action to patch your affected systems to mitigate the elevated risk of cyber attacks.

Please note that Microsoft announced that the extended support for Windows 7 has been ceased since 14 January 2020 and no security updates will be provided after that. Users should arrange upgrading the Windows to Windows 10 or migrating to other supported technology.

Affected Systems:

• Microsoft Internet Explorer 9, 10, 11
• Microsoft Edge (EdgeHTML-based)
• Microsoft Windows 7, 8.1, RT 8.1, 10
• Microsoft Windows Server 2008, 2008 R2, 2012, 2012 R2, 2016, 2019
• Microsoft Windows Server, version 1803, version 1903, version 1909
• Microsoft Office 2016 for Mac, 2019, 2019 for Mac
• Microsoft Office 365 ProPlus
• Microsoft Office Online Server
• Microsoft Excel 2010, 2013, 2013 RT, 2016
• Microsoft Outlook 2010, 2013, 2013 RT, 2016
• Microsoft Exchange Server 2010, 2013, 2016, 2019
• Microsoft SQL Server 2012, 2014, 2016
• Microsoft SharePoint Enterprise Server 2016
• Microsoft SharePoint Server 2013, 2019
• Microsoft Surface Hub
• Windows Malicious Software Removal Tool
• ChakraCore

A complete list of the affected products can be found at:
https://portal.msrc.microsoft.com/en-us/security-guidance

Impact:

Depending on the vulnerability exploited, a successful attack could lead to remote code execution, elevation of privilege, denial of service, information disclosure, security feature bypass, spoofing and tampering.

Recommendation:

Patches for affected products are available from the Windows Update / Microsoft Update Catalog. Users of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.

More Information:

https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/2020-Feb
https://support.microsoft.com/en-us/help/20200211/security-update-deployment-information-february-11-2020
https://www.hkcert.org/my_url/en/alert/20021201
https://www.us-cert.gov/ncas/current-activity/2020/02/11/microsoft-releases-february-2020-security-updates
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV200003
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0618
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0655
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0657 (to CVE-2020-0663)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0665 (to CVE-2020-0683)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0685
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0686
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0688
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0689
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0691 (to CVE-2020-0698)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0701 (to CVE-2020-0717)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0719 (to CVE-2020-0757)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0759
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0767
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0792
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0817
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0818