Microsoft patches two zero-days in massive September 2019 Patch Tuesday

Microsoft has published today 80 security fixes across 15 products and services, as part of the company’s monthly batch of security updates, known as Patch Tuesday.

Of the 80 vulnerabilities patched today, two are so-called zero-days — security flaws that had been exploited in the wild before Microsoft released fixes.

The two zero-days are CVE-2019-1214 and CVE-2019-1215. Both are elevation of privilege (EoP) vulnerabilities. These types of vulnerabilities are usually exploited by malware to gain the ability to run malicious code with administrator privileges on (previously) infected hosts.

The first bug, CVE-2019-1214, is an EoP in the Windows Common Log File System (CLFS) driver. The second, CVE-2019-1215, impacts the ws2ifsl.sys (Winsock) service.

As usual, Microsoft didn’t reveal any details of how the two bugs were being exploited in the wild, only acknowledging a security researcher from Qihoo 360 Vulcan Team with discovering the first.

Read more…
Source: ZDNet