Categories: CVE/vulnerabilitycyber security

Microsoft October 2020 Patch Tuesday Fixes 87 Security Bugs Including 21 RCE

Microsoft October 2020 Patch Tuesday Fixes 87 Security Bugs Including 21 RCEMicrosoft October 2020 Patch Tuesday Fixes 87 Security Bugs Including 21 RCE

Microsoft has released an emergency security updates for critical vulnerabilities that allow attackers to execute arbitrary code on the vulnerable machine.

The updates patched 87 vulnerabilities that include 12 are classified as Critical, and 74 are classified as Important, and one as moderate.

The October security release includes security updates for the following software:

  • Microsoft Windows
  • Microsoft Office and Microsoft Office Services and Web Apps
  • Microsoft JET Database Engine
  • Azure Functions
  • Open Source Software
  • Microsoft Exchange Server
  • Visual Studio
  • PowerShellGet
  • Microsoft .NET Framework
  • Microsoft Dynamics
  • Adobe Flash Player
  • Microsoft Windows Codecs Library

The update also fixes the RCE flaws with several Microsoft products including Excel, Outlook, the Windows Graphics component, and the Windows TCP/IP stack.

Out of the one’s patches, the severe one is an RCE issue tracked as CVE-2020-16898, it resides in Windows TCP/IP stack, the vulnerability can be exploited by an attacker to take over the Windows systems by sending malicious packets.

Another important flaw tracked as CVE-2020-16947, resides in the MS Outlook that can be exploited by attackers by making victims opening a specially crafted file.

Following are some notable vulnerabilities

Microsoft strongly recommended installing these security updates for all the windows users to avoid the security risk and protect your Windows.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity and hacking news updates.

Also Read

Microsoft Released a Largest-Ever Security Patch with the Fixes For 129 Vulnerabilities – Update Now

Microsoft Defender ATP Antivirus is now Available For Android Users in Public Preview

Gurubaran

Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Leave a Comment
Share
Published by
Gurubaran
Tags: Microsoft security updates
5 years ago

Recent Posts

DragonForce Ransomware Targets Major UK Retailers, Including Harrods, Marks & Spencer, and Co-Op

Major UK retailers including Harrods, Marks and Spencer, and Co-Op are currently experiencing significant service…

19 seconds ago

OpenAI Shifts For-Profit Branch to Public Benefit Corporation, Staying Under Nonprofit Oversight

Landmark organizational shift, OpenAI announced its transition from a capped-profit LLC to a Public Benefit…

35 minutes ago

Google’s NotebookLM Introduces Voice Summaries in Over 50 Languages

Google has significantly expanded the capabilities of NotebookLM, its AI-powered research tool, by introducing Audio…

1 hour ago

Android Security Update -A Critical RCE Vulnerability Actively Exploited in the Wild

Google has released critical security patches for Android devices to address 57 vulnerabilities across multiple…

1 hour ago

Hackers Exploit Fake Chrome Error Pages to Deploy Malicious Scripts on Windows Users

Hackers are leveraging a sophisticated social engineering technique dubbed "ClickFix" to trick Windows users into…

2 hours ago

New ClickFix Attack Imitates Ministry of Defence Website to Target Windows & Linux Systems

A newly identified cyberattack campaign has surfaced, leveraging the recognizable branding of India's Ministry of…

3 hours ago