High Threat Security Alert (A20-07-05): Multiple Vulnerabilities in Microsoft Products (July 2020)


 

Published on: 15 July 2020

  
  

Description:

Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components. The list of security updates can be found at:

https://support.microsoft.com/en-us/help/20200714/security-update-deployment-information-july-14-2020

The July 2020 security updates released by Microsoft addressed a vulnerability (CVE-2020-1350) in Microsoft DNS server. The vulnerability affects all Windows Server since Windows Server 2008. Successful exploitation of the vulnerability could allow an unauthenticated attacker to execute arbitrary code in the context of the Local System Account on a targeted Windows Server. Users are advised to apply the latest security update on the affected systems immediately to mitigate the elevated risk of cyber attacks.

 

Affected Systems:

  • Microsoft Internet Explorer 9, 11
  • Microsoft Edge (EdgeHTML-based)
  • Microsoft Windows 7, 8.1, RT 8.1, 10
  • Microsoft Windows Server 2008, 2008 R2, 2012, 2012 R2, 2016, 2019
  • Microsoft Windows Server, version 1903, version 1909, version 2004
  • Microsoft 365 Apps for Enterprise
  • Microsoft Office 2010, 2016 for Mac, 2019, 2019 for Mac
  • Microsoft Office Online Server
  • Microsoft Office Web Apps 2010, 2013
  • Microsoft Word 2010, 2013, 2013 RT, 2016
  • Microsoft Outlook 2010, 2013, 2013 RT, 2016
  • Microsoft Project 2010, 2013, 2016
  • Microsoft SharePoint Foundation 2013
  • Microsoft SharePoint Enterprise Server 2013, 2016
  • Microsoft SharePoint Server 2010, 2019
  • Microsoft Lync Server 2013
  • Microsoft Visual Studio 2015, 2017, 2019
  • Microsoft .NET Framework 2.0, 3.0, 3.5, 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8
  • .NET Core 2.1, 3.1
  • Microsoft Forefront Endpoint Protection 2010
  • Microsoft Security Essentials
  • Microsoft System Center Endpoint Protection, 2012, 2012 R2
  • Windows Defender
  • Skype for Business Server 2015, 2019
  • Visual Studio Code

 

Impact:

Depending on the vulnerability exploited, a successful attack could lead to remote code execution, elevation of privilege, tampering, denial of service, information disclosure and spoofing.

 

Recommendation:

Patches for affected products are available from the Windows Update / Microsoft Update Catalog. Users of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.

Microsoft also provides a registry-based workaround to limit the length of the DNS response from the upstream server to 65280 bytes.  Details of the workaround could be found at the following URL:

https://support.microsoft.com/en-us/help/4569509/windows-dns-server-remote-code-execution-vulnerability

 

More Information:

https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/2020-Jul
https://www.hkcert.org/my_url/en/alert/20071501
https://us-cert.cisa.gov/ncas/current-activity/2020/07/14/microsoft-releases-july-2020-security-updates
https://us-cert.cisa.gov/ncas/current-activity/2020/07/14/microsoft-addresses-wormable-rce-vulnerability-windows-dns-server
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV200008
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1025
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1032
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1036
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1040 (to CVE-2020-1043)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1085
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1147
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1240
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1249
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1267
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1326
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1330
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1333
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1336
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1342
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1344
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1346
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1347
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1349 (to CVE-2020-1375)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1381
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1382
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1384 (to CVE-2020-1416)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1418 (to CVE-2020-1424)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1426 (to CVE-2020-1439)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1442 (to CVE-2020-1451)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1454
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1456
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1458
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1461 (to CVE-2020-1463)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1465
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1468
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1469
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1481

 



Tag: Microsoft , Internet Explorer , Edge , Windows , Windows Server , Microsoft 365 Apps , Microsoft Office , Word , Outlook , Project , SharePoint , Lync , Visual Studio , .NET Framework , .NET Core , Forefront Endpoint Protection , Security Essentials , System Center Endpoint Protection , Windows Defender , Skype , Visual Studio Code
Tags