Skip to main content

Microsoft Release Updates for New and Older Platforms

Microsoft, as part of their regular Update Tuesday schedule, have provided additional critical security updates to address vulnerabilities that are at heightened risk of exploitation due to past nation-state activity and disclosures.
Threat ID:
CC-1464
Category:
Threat Severity:
High
Threat Vector:
Published:
14 June 2017 12:00 AM
Report a cyber attack: call 0300 303 5222 or email [email protected]

This content has been archived

This article no longer conforms to NHS Digital's standards for cyber alerts, and may contain outdated or inaccurate information. Use of this information contained in this page is at your own risk

Summary

Microsoft, as part of their regular Update Tuesday schedule, have provided additional critical security updates to address vulnerabilities that are at heightened risk of exploitation due to past nation-state activity and disclosures.

Threat details

Some of the releases are new and some are for older platforms that are out of support - they are making these publicly available for the first time.

Microsoft security teams actively monitor for emerging threats to help organisations protect themselves against potential attacks. Those on older platforms (such as Windows XP) should prioritise applying these critical updates which can be found in the Download Center (or alternatively in the Update Catalog).

The patches for out of support operating systems include protection against the EsteemAudit (CVE-2017-0176), ExplodingCan (CVE-2017-7269) and EnglishmanDentist (CVE-2017-8487) exploits - these exploits target flaws in the Windows remote desktop protocol, IIS 6.0 and Microsoft Exchange servers. Finally, two zero day vulnerabilities are addressed in this roll out - Windows Search Remote Code Execution (CVE-2017-8543) and LNK Remote Code Execution (CVE-2017-8464).

Microsoft made the following statement:

“Our decision today to release these security updates for platforms not in extended support should not be viewed as a departure from our standard servicing policies. Based on an assessment of the current threat landscape by our security engineers, we made the decision to make updates available more broadly. As always, we recommend customers upgrade to the latest platforms. The best protection is to be on a modern, up-to-date system that incorporates the latest defense-in-depth innovations. Older systems, even if fully up-to-date, lack the latest security features and advancements.

As usual, customers on supported platforms with automatic updates enabled, like Windows 10 or Windows 8.1, are protected and do not need to take additional action.”

Further Resources:

  • Microsoft June 2017 security updates release: https://blogs.technet.microsoft.com/msrc/2017/06/13/june-2017-security-update-release/
  • A detailed list of the updates released due to heightened risk can be found on Microsoft Security Advisory 4025685, along with Frequently Asked Questions
  • For customers using Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows Server 2012, Windows 8.1, Windows 8.1 RT, Windows Server 2012 R2, Windows 10, or Windows Server 2016 see Microsoft Knowledge Base Article 4025686 for guidance.
  • For customers using Windows XP, Windows Vista, Windows 8, Windows Server 2003, or Windows Server 2003 R2 see Microsoft Knowledge Base article 4025687 for guidance.
  • For customers using Windows Embedded versions see Microsoft Knowledge Base article 4025688 for guidance.

Remediation steps

Type Step
  • Computers configured with automatic updates enabled are protected and there is no additional action required.
  • For NHS Organisations managing updates, or those on older platforms, we encourage them to apply these critical security updates as soon as possible.

Last edited: 17 February 2020 11:35 am