Windows Updates Thread - August 2019 - Patch Yo Shizzle

Discussion in 'Business & Enterprise Computing' started by PabloEscobar, Dec 11, 2014.

  1. NSanity

    NSanity Member

    Joined:
    Mar 11, 2002
    Messages:
    18,441
    Location:
    Brisbane
    wot service? iis?
     
  2. Daemon

    Daemon Member

    Joined:
    Jun 27, 2001
    Messages:
    5,471
    Location:
    qld.au
    Details are being released 10am PDT (ie 3am AEST).

    Top tier partners know the details, then next level down have then received a notification about the patch release.

    Interesting to note that it says the patch will be for all "supported" versions of Windows, I wonder if they'll still give a bit of amnesty to 2003 users and also patch it.
     
  3. scrantic

    scrantic Member

    Joined:
    Apr 8, 2002
    Messages:
    1,773
    Location:
    3350
    I normally pilot 2-3 days after release then staged deployment 1-2 weeks later. This time because of all the HT bullshit I accelerated deployment and did critical infrastructure the weekend it weekend just gone.
     
  4. NSanity

    NSanity Member

    Joined:
    Mar 11, 2002
    Messages:
    18,441
    Location:
    Brisbane
    i thought there was already a RCE for 2k3 that they didnt patch?
     
  5. scrantic

    scrantic Member

    Joined:
    Apr 8, 2002
    Messages:
    1,773
    Location:
    3350
  6. Daemon

    Daemon Member

    Joined:
    Jun 27, 2001
    Messages:
    5,471
    Location:
    qld.au
    Indeed, interestingly the referred to it as the "Windows Adobe Type Manager". Adobe and Microsoft.... the security kings.
     
  7. OP
    OP
    PabloEscobar

    PabloEscobar Member

    Joined:
    Jan 28, 2008
    Messages:
    14,638
    It's the Perfect storm of suck...

    Especially given that I can't patch during business hours without user impact :(.
     
  8. scrantic

    scrantic Member

    Joined:
    Apr 8, 2002
    Messages:
    1,773
    Location:
    3350
    If I recall the Font Subsystem patches previously released have been buggy as all hell and recalled not long after.
     
  9. OP
    OP
    PabloEscobar

    PabloEscobar Member

    Joined:
    Jan 28, 2008
    Messages:
    14,638
    KB3069392 breaks screen sharing in Cisco Webex sessions, but apart from that, everything else seems hunky dory.
     
  10. wazza

    wazza Member

    Joined:
    Jun 28, 2001
    Messages:
    3,761
    Location:
    NSW
    Cisco have already released a patch (WBS29.13.34) for this.
     
  11. GiantGuineaPig

    GiantGuineaPig Member

    Joined:
    Oct 23, 2006
    Messages:
    4,027
    Location:
    Adelaide
    Anyone had new updates today getting stuck after a reboot?
     
  12. OP
    OP
    PabloEscobar

    PabloEscobar Member

    Joined:
    Jan 28, 2008
    Messages:
    14,638
  13. GiantGuineaPig

    GiantGuineaPig Member

    Joined:
    Oct 23, 2006
    Messages:
    4,027
    Location:
    Adelaide
  14. OP
    OP
    PabloEscobar

    PabloEscobar Member

    Joined:
    Jan 28, 2008
    Messages:
    14,638
  15. NSanity

    NSanity Member

    Joined:
    Mar 11, 2002
    Messages:
    18,441
    Location:
    Brisbane
    Please tell me all this fucking font shit doesn't affect winx?

    *edit*

    mother****ing fuck balls.

    How the fuck do i uninstall IE11 from my pc.
     
    Last edited: Aug 19, 2015
  16. OP
    OP
    PabloEscobar

    PabloEscobar Member

    Joined:
    Jan 28, 2008
    Messages:
    14,638
    Like most things 'It Depends'

    Endpoint AV should see badthing.exe get written to disk, or executed from memory and stop it. But it probably can't differentiate between iexplore.exe downloading and running badthing.exe and iexplorer.exe downloading and rendering catpicture.jpg

    Your UTM may or may not have a rule for this. Contact your vendor with the CVE (CVE-2015-2502) and ask, or google CVE-2015-2502 + your vendor and see - http://www.checkpoint.com/defense/advisories/public/2015/cpai-2015-1007.html is checkpoints advisory on it.

    Even if your current threat protection believes it has you covered, you should still be patching ASAP.
     
  17. m0n4g3

    m0n4g3 Member

    Joined:
    Aug 5, 2009
    Messages:
    3,742
    Location:
    Perth, WA
    SCCM has picked this up already, strange that we haven't seen any weird issues like this getting SCCM to apply updates?
     
  18. NSanity

    NSanity Member

    Joined:
    Mar 11, 2002
    Messages:
    18,441
    Location:
    Brisbane
    Client-based Endpoint AV is fucking worthless at this point.

    Why anyone continues to pay for it is beyond me.
     
  19. OP
    OP
    PabloEscobar

    PabloEscobar Member

    Joined:
    Jan 28, 2008
    Messages:
    14,638
    Disagree. Its one of the many layers that make up an effective security solution.

    Judging by the number of infected USB sticks, Phones and Cameras our endpoint AV cleanses with fire, I'd say its still has some relevance.

    Unless you have the luxury of whitelisting, and/or extreme USB policy, you're foolish not to run it.
     
  20. NSanity

    NSanity Member

    Joined:
    Mar 11, 2002
    Messages:
    18,441
    Location:
    Brisbane
    I said pay for it.

    Not don't have it.

    If you want draconian shit like "no usb ever" or what have you - and aren't paying for Win Enterprise client licenses, sure there is a need outside of hurr durr AV.

    But if you're actually paying $30-60/seat just to get a pretty report that has .4 seconds of view time by some one who signs the cheques - that money is better spent elsewhere. Fuck I'll send you a powerpoint every month for $10/seat.
     

Share This Page

Advertisement: