-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
*******************************************************************************
*******
Title: Microsoft Security Update Releases
Issued: May 12, 2020 **********************************************************
****************************
Summary
=======
The following CVEs have undergone a major revision increment:
* CVE-2020-0605
* CVE-2018-0886
Revision Information:
=====================
- CVE-2020-0605 | .NET Framework Remote Code Execution Vulnerability
- https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-
0605
- Version: 3.0
- Reason for Revision: To comprehensively address CVE-2020-0605, Microsoft has
released
the May 2020 security updates for all versions of Microsoft .NET, with the
exception
of: Microsoft .NET Framework 3.0 Service Pack 2, Microsoft .NET Framework
3.5,
and Microsoft .NET Framework 3.5.1. Microsoft recommends that customers
running
any other versions of Microsoft .NET Framework should install the May 2020
security
updates to be protected from this vulnerability.
- Originally posted: January 14, 2020
- Updated: May 12, 2020
- Aggregate CVE Severity Rating: Critical
- CVE-2018-0886 | CredSSP Remote Code Execution Vulnerability
- https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2018-
0886
- Version: 4.0
- Reason for Revision: Added supported editions of Microsoft Windows to the
Security
Updates table because they are affected by this vulnerability. Microsoft
recommends
that customers running any of these editions of Windows install the latest
security
updates to be fully protected from this vulnerability.
- Originally posted: March 13, 2018
- Updated: May 12, 2020
- Aggregate CVE Severity Rating: Important
*******************************************************************************
*******
Other Information
=================
Recognize and avoid fraudulent email to Microsoft customers: ==================
====================================================================
If you receive an email message that claims to be distributing a Microsoft
security
update, it is a hoax that may contain malware or pointers to malicious websites.
Microsoft does not distribute security updates via email.
The Microsoft Security Response Center (MSRC) uses PGP to digitally sign all
security
notifications. However, PGP is not required for reading security notifications,
reading security bulletins, or installing security updates. You can obtain the
MSRC
public PGP key at <https://technet.microsoft.com/security/dn753714>.
*******************************************************************************
*******
THE INFORMATION PROVIDED IN THIS MICROSOFT COMMUNICATION IS PROVIDED "AS IS"
WITHOUT
WARRANTY OF ANY KIND. MICROSOFT DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR
IMPLIED,
INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
PURPOSE.
IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE LIABLE FOR ANY
DAMAGES
WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF
BUSINESS
PROFITS OR SPECIAL DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE
BEEN
ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR
CONSEQUENTIAL
OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY. **************
************************************************************************
Microsoft respects your privacy. Please read our online Privacy Statement at
<http://go.microsoft.com/fwlink/?LinkId=81184>.
If you would prefer not to receive future technical security notification alerts
by
email from Microsoft and its family of companies please visit the following
website
to unsubscribe:
<https://profile.microsoft.com/RegSysProfileCenter/subscriptionwizar
d.aspx?wizid=5a2a311b-5189-4c9b-9f1a-d5e913a26c2e&%3blcid=1033>.
These settings will not affect any newsletters you've requested or any mandatory
service communications that are considered part of certain Microsoft services.
For legal Information, see:
<http://www.microsoft.com/info/legalinfo/default.mspx>.
This newsletter was sent by:
Microsoft Corporation
1 Microsoft Way
Redmond, Washington, USA
98052
-----BEGIN PGP SIGNATURE-----
iQEzBAEBCAAdFiEELTQbGKdJ0A4NErYObMczVWaPe3UFAl65610ACgkQbMczVWaP
e3W/8AgAt4xg7e0/3GDirJjRuZQKAcWQNRIStL1m1d1Cv7MXL1X/SqxkGOYXlP7+
R9Lk7q1Lrb2Id01TE429N7AFmRMT1F4ZZljaLKa8fSsDOpuO49rmdrVZjGgnGhXi
CVE9PUOVhcEQpsNr2snI2BN/22PWsWrm3EYDJJhJiZKnEW3nqUE0nqO0tSJrHakf
8gN7MOgrQoDTwFOFoChLVwHnj+0hNHVyo4Tlt51klxVDsF2AEGmBUFDq80kynmq9
BbIaZatazTdFYDGG/Ftk5gz7tKNZ1er0vXnJeDCJncEhyu4UgkDSTKuR5quRpP3+
0WlLyPQ/KufrgRpR7fer2FWUaeEjkA==
=11n3
-----END PGP SIGNATURE-----
If you would prefer not to receive future technical security
notification alerts by email from Microsoft and its family of
companies please visit the following website to unsubscribe:
https://account.microsoft.com/profile/unsubscribe?CTID=0&ECID=vRM1jOElPC%2FcbBd
%2BtSbLk%2Fr76TyjEIQ54eTVzG8O%2Bps%3D&K=d40f57e7-4abc-4405-a9ac-9630123f526f&CM
ID=null&D=637248985022444522&PID=18000&TID=adfd46f4-992a-45ec-935c-4c9bc4baf506
---
■ Synchronet ■ Time Warp of the Future BBS - Home of League 10 IBBS Games
|
