Friday, March 13, 2020

Microsoft Issues Emergency Windows 10 Patch

Remember that joke I made about patches that create more problems than they fix? Welp, here we go again.

On March 12, 2020, Microsoft released an "out of band" security update to address a remote code execution vulnerability in the way that the Microsoft Server Message Block 3.1.1 (SMBv3) protocol handles certain requests (CVE-2020-0796). This vulnerability applies to Windows 10, version 1903, Windows 10, version 1909, Windows Server, version 1903 and Windows Server, version 1909. While we have not observed an attack exploiting this vulnerability, we recommend that you apply this update to your affected devices with priority.