15 April 2020
Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 =========================================================================== AUSCERT Security Bulletin ASB-2020.0085 Security vulnerabilities found in System Center products 15 April 2020 =========================================================================== AusCERT Security Bulletin Summary --------------------------------- Product: Windows Defender antimalware platform Windows Defender Microsoft Security Essentials Microsoft System Center Endpoint Protection Microsoft System Center 2012 Endpoint Protection Microsoft System Center 2012 R2 Endpoint Protection Microsoft Forefront Endpoint Protection 2010 Operating System: Windows Impact/Access: Increased Privileges -- Existing Account Resolution: Patch/Upgrade CVE Names: CVE-2020-1002 CVE-2020-0835 Member content until: Friday, May 15 2020 OVERVIEW Microsoft has released its monthly security patch update for the month of April 2020. This update resolves 2 vulnerabilities across the following products:  Microsoft Forefront Endpoint Protection 2010 Microsoft Security Essentials Microsoft System Center 2012 Endpoint Protection Microsoft System Center 2012 R2 Endpoint Protection Microsoft System Center Endpoint Protection Windows Defender Windows Defender antimalware platform IMPACT Microsoft has given the following details regarding these vulnerabilities. Details Impact Severity CVE-2020-0835 Elevation of Privilege Important CVE-2020-1002 Elevation of Privilege Important MITIGATION Microsoft recommends taking no action, as update will be applied automatically. Customers should verify that the latest version of the Microsoft Malware Protection Engine/Windows Defender antimalware platform and definition updates are being actively downloaded and installed for their Microsoft antimalware products [2 + 3]. REFERENCES  Microsoft Security Update Guidance https://portal.msrc.microsoft.com/en-us/security-guidance  CVE-2020-0835 | Windows Defender Antimalware Platform Hard Link Elevation of Privilege Vulnerability https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0835  CVE-2020-1002 | Microsoft Defender Elevation of Privilege Vulnerability https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1002 AusCERT has made every effort to ensure that the information contained in this document is accurate. However, the decision to use the information described is the responsibility of each user or organisation. The decision to follow or act on information or advice contained in this security bulletin is the responsibility of each user or organisation, and should be considered in accordance with your organisation's site policies and procedures. AusCERT takes no responsibility for consequences which may arise from following or acting on information or advice contained in this security bulletin. =========================================================================== Australian Computer Emergency Response Team The University of Queensland Brisbane Qld 4072 Internet Email: firstname.lastname@example.org Facsimile: (07) 3365 7031 Telephone: (07) 3365 4417 (International: +61 7 3365 4417) AusCERT personnel answer during Queensland business hours which are GMT+10:00 (AEST). On call after hours for member emergencies only. =========================================================================== -----BEGIN PGP SIGNATURE----- Comment: http://www.auscert.org.au/render.html?it=1967 iQIVAwUBXpaPRWaOgq3Tt24GAQg4ohAAzL05jVYXhkAsSwJ3kxQB9T+WbhUa9rQB M6bfz/PbOP2fmd+nGbk2LC56v/T5BJOC0415s+kRaAfdKljisLrh4SiIe0AkXzHi JSa8TOTgytlwIYpxITkQqW44/eJK4RKnxJ6bVRww3penu8YMvx60JyaUChiTi89b NNddnBzJ/jDqZrq7puvf8d4KoHDW1j5d7SlBB2uDlviKA3RMh/Tu8WIGmPBt3fUG OpxPxFoQlnne479xBokmIzqDSteQ3VjYis2PNkPD59xL0yaGHG7T3cfxTuzOhbc5 xB7++IXngD8S9LU4Z/AVcgl6rDE3kij3AHn9y+DAs6w2EROb6CfQeDXtbufNAxZm uZ4KBl7T3OfuhbY/CLYzE507n84daqpWU9cjQ7R6Mo27kMJ6g0TNsoFt7W7zUNC/ +ShWdf7v/nFZJO7H0OLOXllHyz2BBmGIN2FTTJgqSXIJRZpPek05BvK7FCqnkXGj hCbfwZGazt++go5AcoSdSlw6T1wz3peWTkM2DZaBPJYQUS7ziqH6B9ZQO4V9KW15 uf9YNxuYkT/LUa2dqmrziPVOO2g/IRZb4efHOWrg782uhlJ6zjnK1WL43RxUkEYy hv78sB3ACuxNQPPtI6kL3zXnPSifbGWKWuK0WUBG72MKjeMuslRNEae7PTFWW03W ii8KiKVXe/w= =0j/P -----END PGP SIGNATURE-----