UPDATED 20:52 EST / NOVEMBER 13 2018

SECURITY

Microsoft patches actively exploited vulnerability, re-releases Windows 10 update

Microsoft Corp. today released a patch for a serious vulnerability that’s being actively exploited in the wild as well as re-releasing its troubled Windows 10 update.

Delivered as part of Microsoft’s monthly Patch Tuesday release, the patch addressed CVE-2018-8589, a vulnerability in Windows 7, Server 2008 and Server 2008 R2 versions that allowed an attacker to escalate privileges and run arbitrary code in the local system.

Discovered by Kaspersky Lab, the vulnerability is actively being used by a number of advanced persistent threat groups, groups that use network attacks to gain unauthorized access to a network that typically remains undetected for an extended period.

The Elevation of Privilege vulnerability exists in Win32k.sys and could allow an attacker to run arbitrary code in the context of a local system,” Chris Goettl, director of product management, security at Ivanti Inc., told SiliconANGLE. “The CVE is rated as Important and the attacker would need to log on to the system to exploit the vulnerability, but when exploited the attacker would gain full control of the affected system.”

Alongside its Patch Tuesday release, Microsoft has taken another stab at releasing a stable Windows 10 update.

Problems with the update first emerged Oct. 7 when Microsoft withdrew the update after users reported that it deleted files. Microsoft claimed Oct. 9 it had fixed the issue, but it only re-released the update to beta testers participating in the Windows Insider program.

“In addition to extensive internal validation, we have taken time to closely monitor feedback and diagnostic data from our Windows Insiders and from the millions of devices on the Windows 10 October Update, and we have no further evidence of data loss,” John Cable, director of program management, Windows servicing and delivery, said in a blog post. “Based on this data, today we are beginning the re-release of the October Update by making it available via media and to advanced users who seek to manually check for updates.”

There was no word on when Microsoft might push the update out to all users, something it has done in the past, although Cable noted that Microsoft was slowing the rollout “to more carefully study device health data.” That includes checking Windows installations before running the update to make sure there are no compatibility issues.

Photo: U.S. Air Force

Since you’re here …

… We’d like to tell you about our mission and how you can help us fulfill it. SiliconANGLE Media Inc.’s business model is based on the intrinsic value of the content, not advertising. Unlike many online publications, we don’t have a paywall or run banner advertising, because we want to keep our journalism open, without influence or the need to chase traffic.The journalism, reporting and commentary on SiliconANGLE — along with live, unscripted video from our Silicon Valley studio and globe-trotting video teams at theCUBE — take a lot of hard work, time and money. Keeping the quality high requires the support of sponsors who are aligned with our vision of ad-free journalism content.

If you like the reporting, video interviews and other ad-free content here, please take a moment to check out a sample of the video content supported by our sponsors, tweet your support, and keep coming back to SiliconANGLE.

Cookies

We employ the use of cookies. Find out more.