[High-risk Vulnerability Warning] Microsoft Released 81 Vulnerability Patches on the September Patch Tuesday

On September 12, 2017, Microsoft released its monthly set of security advisories for vulnerabilities that have been identified and addressed in various products. This month's advisory release addresses 81 new vulnerabilities with 27 of them rated critical, 52 rated important, and 2 rated moderate.

Microsoft announced in its monthly notice of this month that they fixed a .NET 0day vulnerability with ID CVE-2017-8759, a vulnerability that affects the .NET Framework, where an attacker can exploit the vulnerability for remote code execution, gain sensitive data or server permissions, and the security risk is High-Risk. We recommended that users pay close attention to this vulnerability.

Range of influence of the vulnerabilities:
Edge, Hyper-V, Internet Explorer, Office, Remote desktop protocol, SharePoint, Windows graphical display, Windows kernel mode drivers, etc.

Alibaba Cloud would like to remind users to update the patches in a timely manner in accordance with their business situation, in order to improve server security.

1. We recommended users turn on the Windows Update feature, and then click the “Check Update" button, and download and install the related security patches based on their business needs.
2. Restart the server after installation, and check that the system is operating normally.

Note: Before installing updates, we recommend users carry out some testing and backups, and take a snapshot of the current state of their instances, to avoid data loss in the event that an update fails.

For details of the security patches, please click this link. If you have any questions, please contact us by submitting a ticket any time.

Alibaba Cloud Security Team