Microsoft today released its May 2019 software updates to address a total of 79 vulnerabilities in its Windows operating systems and other products. Of these latest updates, 18 are rated critical. This month’s Patch Tuesday from Microsoft also addresses two vulnerabilities that are actively being exploited.

Patch Tuesday updates for Microsoft products

This month’s Patch Tuesday covers updates for the following list of products and software: 

  • Adobe Flash Player

  • Internet Explorer

  • Microsoft Edge

  • Microsoft Windows

  • Microsoft Office and Microsoft SharePoint

  • ChakraCore

  • ASP.NET

  • Microsoft Exchange Server

  • Team Foundation Server

  • Azure DevOps Server

  • NuGet Package Manager

Critical vulnerability patched

This month’s edition of Patch Tuesday patches the “wormable” vulnerability (CVE-2019-0708) found in remote desktop services. This vulnerability could be exploited remotely by sending specially crafted requests over Remote Desktop Protocol to a targeted system.

Third-party patches: Adobe updates

Adobe has addressed nearly 84 vulnerabilities in its suite of products, including Adobe Flash Player, Adobe Acrobat, Adobe Reader, and Adobe Shockwave Player. Of these vulnerabilities, 42 are rated critical and the rest are important. All the release information about these flaws is listed under Bulletin ID APSB19-26. Successful exploitation of any of these vulnerabilities could lead to arbitrary code execution.

Non-security updates

This Patch Tuesday, Microsoft also released non-security updates for Office 2010, Office 2013, and Office 2016 to address minor performance issues.

A patch in time saves nine

Leaving a vulnerability unpatched can pose a serious threat to your enterprise. Automated patch management helps secure your enterprise by deploying patches for over 1,500 applications automatically, so you never miss an update. Patch management tools like Desktop Central and Patch Manager Plus can scan for updates, download any missing updates, test the updates prior to deployment, and install them on your organization’s computers without manual intervention. Download either of our solutions for automating deployment tasks to start your free, 30-day trial.

This site uses Akismet to reduce spam. Learn how your comment data is processed.