Microsoft Monthly Security Update (Oct 2020)
Last Update Date:
16 Oct 2020
Release Date:
14 Oct 2020
5117
Views
RISK: High Risk
TYPE: Operating Systems - Windows OS
Microsoft has released monthly security update for their products:
| Vulnerable Product | Risk Level | Impacts | Notes |
| Extended Security Updates (ESU) |  Medium Risk | Denial of Service Information Disclosure Remote Code Execution Elevation of Privilege Spoofing | |
| Windows |  High Risk | Elevation of Privilege Information Disclosure Remote Code Execution Spoofing Denial of Service Security Restriction Bypass | [Updated 15-Oct-2020]: Proof-of-concept code is publicly available for CVE-2020-16898. |
| Microsoft Office | High Risk | Remote Code Execution Elevation of Privilege Security Restriction Bypass Information Disclosure Spoofing Denial of Service | [Updated 16-Oct-2020]: Proof-of-concept code is publicly available for CVE-2020-16947. |
| Apps | Medium Risk | Remote Code Execution | |
| Exchange Server | Medium Risk | Information Disclosure | |
| Developer Tools | Medium Risk | Remote Code Execution Security Restriction Bypass Information Disclosure | |
| Microsoft Dynamics | Medium Risk | Elevation of Privilege Spoofing | |
| Other | Medium Risk | Remote Code Execution |
Number of 'Extremely High Risk' product(s): 0
Number of 'High Risk' product(s): 2
Number of 'Medium Risk' product(s): 6
Number of 'Low Risk' product(s): 0
Evaluation of overall 'Risk Level': High Risk
Impact
- Denial of Service
- Elevation of Privilege
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
- Spoofing
System / Technologies affected
- Extended Security Updates (ESU)
- Windows
- Microsoft Office
- Apps
- Exchange Server
- Developer Tools
- Microsoft Dynamics
- Other
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor.
Vulnerability Identifier
Source
- Microsoft
Related Link
Share with