Patch Tuesday: Microsoft plugs 77 security vulnerabilities

Quite a lot of bug fixes hit the web yesterday, Microsoft's Patch Tuesday included updates for 77 CVE-listed bugs in Windows, Office and Edge/IE, and then there were updates from Adobe for another 75 bugs in Acrobat and Reader.

Among other things, there's a bug in Windows that enables remote cote execution via a vulnerability in the Windows Server DHCP component. Attackers can compromise Windows networks simply by sending a specially crafted packet. This isn't a big issue for home users, but Internet Explorer and Edge users are vulnerable via an attack that can be triggered via a specially crafted webpage. As usual, it's best to update asap.

Among the most potentially serious was CVE-2019-0626, a remote code execution vulnerability in the Windows Server DHCP component.

While the bug won't be much of a risk to everyday PCs, admins running Windows networks will want to make this fix a top priority, says Trend Micro ZDI's Dustin Childs.

"If you have a DHCP server on your network, and chances are you do, this patch should be at the top of you lists," Childs explained.

A summary of the patches can be found at The Register.