Microsoft patches 64 vulnerabilities in the March 2019 Patch Tuesday, 17 of which are rated critical.
Microsoft rolled out today its monthly batch of security patches known as Patch Tuesday.
This month, the Redmond-based company fixed 64 vulnerabilities, 17 of which were rated critical, including two zero-days affecting in its main product, the Windows operating system.
The first of these zero-days is one that Google made public last week. Google said this zero-day was being abused in attacks against Windows 7 32-bit users.
Today Microsoft didn’t release patches for Windows 7 only, but also for Windows Server 2008 systems, which are also impacted by this issue –tracked as CVE-2019-0808.
According to a Google security alert from last week, attackers used the Windows zero-day together with a Chrome zero-day to escape the Chrome browser sandbox and execute malicious code on targeted systems.
CVE-2019-0808’s role in the exploit chain was to allow attackers to execute their malicious code with elevated admin privileges once the Chrome zero-day helped attackers escape from the Chrome security sandbox.
Google, too, patched its side of the aisle last week, with the release of Chrome 72.
