Security News > 2017 > February > Will February’s Patch Tuesday fix a known zero-day? (Help Net Security)
2017-02-10 13:00
Coming into Patch Tuesday we have a known zero day on the Microsoft side, and we’ve seen example code for an SMB exploit that could lead to DoS and BYOD of a system. US CERT recommends blocking outbound SMB connections until an update is in place. This would include blocking TCP ports 139 and 445 along with UDP ports 137 and 138 from the local network to the wide area network. Laurent Gaffié, the researcher … More →
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/nL6gvWv5KUE/
Related news
- Microsoft August 2024 Patch Tuesday fixes 9 zero-days, 6 exploited (source)
- Week in review: Vulnerability allows Yubico security keys cloning, Patch Tuesday forecast (source)
- Microsoft September 2024 Patch Tuesday fixes 4 zero-days, 79 flaws (source)
- Patch Tuesday for September 2024: Microsoft Catches Four Zero-Day Vulnerabilities (source)
- Microsoft confirms IE bug squashed in Patch Tuesday was exploited zero-day (source)
- Week in review: Tips for starting your cybersecurity career, Patch Tuesday forecast (source)
- AMD won’t patch Sinkclose security bug on older Zen CPUs (source)
- New Chrome zero-day actively exploited, patch quickly! (CVE-2024-7971) (source)
- Fortra Issues Patch for High-Risk FileCatalyst Workflow Security Vulnerability (source)
- September 2024 Patch Tuesday forecast: Downgrade is the new exploit (source)