Menu
Try Readiness

Patch Impact Assessment August 2019

Vulnerability Assessment

0

PUBLICLY DISCLOSED

0

EXPLOITED

0

ZERO-DAY

This is a huge month for Patch Tuesday as Microsoft attempts to address 78 unique vulnerabilities spanning Windows desktop and server platforms, Microsoft Office and core development tools. Without the pressure of a publicly reported vulnerability and no Zero-days to urgently address, we recommend a measure pace of testing before deployment for the Windows and Office updates, with a more rapid pace for the IE and development tools patches.

Windows

This is pretty massive update to the Windows platform with fifteen updates rated as critical and 55 rated as important by Microsoft. The two biggest issues relate to how Microsoft handles fonts (a recurring theme) and the worm-able vulnerability (CVE-2019-1222)  in Microsoft Remote Desktop Services (formerly Terminal Services). Not only does this month’s Patch Tuesday update attempt to address  a large number vulnerabilities, it creates a large testing area for deployment engineers. 

VULNERABILITIES

0
LOW

0
MODERATE

55
IMPORTANT

16
CRITICAL

PATCH NOW!

Browsers

Microsoft has attempted to address twelve vulnerabilities to both its web browsers (Edge and Internet Explorer) with nine rated as critical. Though we don’t have any vulnerabilities publicly reported or known to be exploited, two groups of issues relate to the Chakra scripting engine and how both browsers handle memory.

VULNERABILITIES

3
LOW

9
MODERATE

3
IMPORTANT

9
CRITICAL

PATCH NOW!

Office

This is an interesting month for Office updates. For August we see five patches rated as critical by Microsoft and the remaining nine updates are rated as important. Unusually, Microsoft has released an update to a trusted font issue for Office for Mac, and the venerable Office 2013 has an update to the aging Microsoft JET database engine.

VULNERABILITIES

0
LOW

0
MODERATE

9
IMPORTANT

5
CRITICAL

SCHEDULE

Dev Tools

Microsoft has attempted to address eight vulnerabilities to their development platform with seven rated as critical and the remainder rated as important. All the critical updates relate to the Chakra scripting engine (which also relate to the IE  and Edge security issues. In addition to the Chakra issues and updates.

VULNERABILITIES

0
LOW

0
MODERATE

1
IMPORTANT

7
CRITICAL

SCHEDULE

Adobe Flash Player

Microsoft has not released any specific bulletins or advisories for Adobe products.

VULNERABILITIES

0
LOW

0
MODERATE

0
IMPORTANT

0
CRITICAL

WAIT

Related Posts

Opinion

Migrate from Windows 7 to Windows 10 Before It’s Too Late: Everything You Need to Know!

October 18, 2019

Out-dated operating systems such as the beloved Windows 7, may still be functional but leave your company vulnerable. It is inherently risky to continue running Windows 7 and much safer to migrate to Windows 10 before it is too late.

Read More
Written by
Patch Tuesday

A Troubled Update to Critical Browser Patches for October Patch Tuesday

October 10, 2019

This October Patch Tuesday is an important but troubled patch release from Microsoft with a critical, out-of-band browser update that has been widely reported as causing a number of deployment issues.

Read More
Written by
Patch Impact Assessment Summary

Patch Impact Assessment October 2019

October 9, 2019

This October Patch Tuesday is an important but troubled patch release from Microsoft. With a browser out-of-band critical update that has been widely reported as causing a number of deployment issues.

Read More
Written by

Contact Us

Free trial (25 applications)

Terms of use

Privacy policy

Read more articles

EricOctober 18, 2019

Migrate from Windows 7 to Windows 10 Before It's Too Late: Everything You Need to Know!

Opinion0
GregOctober 10, 2019

A Troubled Update to Critical Browser Patches for October Patch Tuesday

Patch Tuesday0
EricOctober 9, 2019

Patch Impact Assessment October 2019

Patch Impact Assessment Summary0
GregSeptember 13, 2019

Patch Impact Assessment (Threatscape Report) September 2019

Patch Impact Assessment Summary0
GregSeptember 12, 2019

Complex September Update Brings Large Windows, Browser and Development Tool Patches

Patch Tuesday0

1-833-2READINESS | +44 203 633 5432

© Copyright 2019 Application Readiness Inc.

    
We use cookies to ensure that we give you the best experience on our website. If you continue to use this site we will assume you're happy with it. Find out more.