Microsoft releases 13 patches for 47 flaws

In September's Patch Tuesday, Microsoft issued 13 bulletins — 4 for them critical — that cover 47 vulnerabilities found across Internet Explorer, Outlook, SharePoint, Office and the Windows kernel. It is an exceptionally large number of patches for any one month, according to Wolfgang Kandek, chief technology officer of IT security firm Qualys.

MS13-068 should patch a memory corruption vulnerability in Outlook. The bug could allow a remote attacker to execute code if a user merely previews a malicious email message in Outlook or opens it, a Tuesday bulletin summary said.

MS13-069 is a collection of 10 patches for Internet Explorer. With these vulnerabilities, an attacker could plant malicious code on a Web page that, when visited by an unpatched browser, could take control of the user's machine, said Amol Sarwate, director of Qualys.

Microsoft patched 10 critical SharePoint vulnerabilities. Details of one of the SharePoint bugs—a POST cross-site scripting flaw—have already been publicly disclosed, and all of the vulnerabilities can lead to remote code execution on the collaboration server.

Read more -here-

• John Deere says solar storm compromised GPS tracking on tractors
• Dell confirms database hacked - hacker says 49 million customers hit
• Google releases emergency fix for new Chrome zero-day flaw
• Disney+, Hulu and Max team up for streaming bundle package
• OpenAI is reportedly working on a search feature for ChatGPT
• TikTok, ByteDance sue to block US law seeking sale or ban of app