Microsoft yesterday released Patch Tuesday updates for all versions of its Operating System. The Patch Tuesday update contained fixes for security vulnerabilities found in Internet Explorer and Microsoft Edge.
Microsoft has released fixes for a total of 65 vulnerabilities with 22 of them being considered as critical. The Patch Tuesday updates are targeted towards Windows, Office and other products of the company.
The Redmond Giant has also revealed a privilege vulnerability that exists in SharePoint Server which does not properly sanitise specially crafted web request. This vulnerability helps the attacker to gain rights as a logged in user.
“An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitise a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint server,” Microsoft says.
Microsoft has also released fixes for the vulnerability found in the Windows Kernel which lets the attackers to exploit flaw to take full control of the system. The vulnerability effected Windows 64 bit versions of Windows 7 Service Pack 1 and Windows Server 2008 R2 Service Pack 1.
Microsoft confirms that when Windows kernel fails to handle objects in memory, is when the vulnerability exists. This lets the attacker to exploit the vulnerability and run the arbitrary code in kernel mode and give it full rights to access the data letting him to change, delete or create accounts.
Adobe released patching for Flash Player vulnerability which has been included in the Patch Tuesday update roll out by Microsoft for its Windows operating systems.
The updates also fixes vulnerabilities with Internet Explorer and Microsoft Edge which has the Flash Player built in by default.