Latest Updates from Microsoft in November 2024

AndyC 2 December 2024

Microsoft Corporation has freshly rolled out patches to fix over 89 security vulnerabilities in its Windows OS and other associated software products.

Microsoft Corporation has freshly rolled out patches to fix over 89 security vulnerabilities in its Windows OS and other associated software products. This latest batch of updates includes solutions for two zero-day exploits that are actively being used by malicious actors, in addition to two other vulnerabilities that were publicly disclosed prior to the release of the patches.

The critical zero-day vulnerability, known as CVE-2024-49039, is a flaw in the Windows Task Scheduler that permits an attacker to elevate their system privileges on a Windows PC. The flaw was reported by Google’s Threat Analysis Group.

Another vulnerability addressed in this update is CVE-2024-43451, a spoofing bug that could expose Net-NTLMv2 hashes used for Windows authentication.

Satnam Narang, who serves as a senior research engineer at Tenable, highlighted the risk posed by stolen NTLM hashes that can enable “pass-the-hash” attacks. He noted that CVE-2024-43451 is the third NTLM zero-day discovered this year.

Multiple other publicly disclosed vulnerabilities that Microsoft has fixed this month include CVE-2024-49019, an elevation of privilege flaw in Active Directory Certificate Services (AD CS); and CVE-2024-49040, a spoofing vulnerability in Microsoft Exchange Server.

Ben McCarthy, the lead cybersecurity engineer at Immersive Labs, drew special attention to CVE-2024-43639, a remote code execution bug in Windows Kerberos, the authentication mechanism extensively used in Windows network domains.

Regarding CVE-2024-43498, another critical flaw Microsoft addressed, McCarthy pointed out it’s a remote code execution issue in .NET and Visual Studio with a CVSS severity rating of 9.8 (out of 10).

Moreover, 29 of the updates released today focus on addressing memory-related security concerns pertaining to SQL databases, with each bug carrying a threat score of 8.8. Exploiting any of these vulnerabilities could result in malware installation when an authorized user connects to a compromised SQL server.

To delve deeper into the specifics of today’s Microsoft patches, you can refer to the SANS Internet Storm Center’s detailed list. For system administrators managing extensive Windows environments, taking note of potential issues highlighted on Askwoody.com is advisable, as it often flags problematic Microsoft updates affecting many users.

In case you encounter any challenges while applying these updates, feel free to share your experiences in the comments section. Chances are high that someone else reading the comments has faced a similar issue and might have discovered a solution.

About Author

AndyC

Andy Curtis is an award-winning security consultant, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by state and federal government, leading healthcare and banking providers across three continents. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and is a regular voice on TV and radio explaining IT security threats.

See author's posts

Tags: , , , , , , , , , ,

More Stories

Surge of OAuth Device Code Phishing Attacks Targets M365 Accounts

Russia was behind a destructive cyber attack on a water utility in 2024, Denmark says

AndyC 20 December 2025
CLOP targets Gladinet CentreStack servers in large-scale extortion campaign

CLOP targets Gladinet CentreStack servers in large-scale extortion campaign

AndyC 20 December 2025
ASRock, ASUS, GIGABYTE, MSI Boards vulnerable to pre-boot memory attacks

ASRock, ASUS, GIGABYTE, MSI Boards vulnerable to pre-boot memory attacks

AndyC 20 December 2025
China-linked APT UAT-9686 is targeting Cisco Secure Email Gateway and Secure Email and Web Manager

China-linked APT UAT-9686 is targeting Cisco Secure Email Gateway and Secure Email and Web Manager

AndyC 20 December 2025
Hewlett Packard Enterprise (HPE) fixed maximum severity OneView flaw

Hewlett Packard Enterprise (HPE) fixed maximum severity OneView flaw

AndyC 19 December 2025
DIG AI: Uncensored Darknet AI Assistant at the Service of Criminals and Terrorists

DIG AI: Uncensored Darknet AI Assistant at the Service of Criminals and Terrorists

AndyC 19 December 2025

You may have missed

Surge of OAuth Device Code Phishing Attacks Targets M365 Accounts

Russia was behind a destructive cyber attack on a water utility in 2024, Denmark says

AndyC 20 December 2025
Russia-Linked Hackers Use Microsoft 365 Device Code Phishing for Account Takeovers

Russia-Linked Hackers Use Microsoft 365 Device Code Phishing for Account Takeovers

AndyC 20 December 2025

Microsoft 365 accounts targeted in wave of OAuth phishing attacks

AndyC 20 December 2025
State-linked and criminal hackers use device code phishing against M365 users

State-linked and criminal hackers use device code phishing against M365 users

AndyC 20 December 2025
Three ways teams can tackle Iran’s tangled web of state-sponsored espionage

Three ways teams can tackle Iran’s tangled web of state-sponsored espionage

AndyC 20 December 2025

Subscribe To InfoSec Today News

You have successfully subscribed to the newsletter

There was an error while trying to send your request. Please try again.

World Wide Crypto will use the information you provide on this form to be in touch with you and to provide updates and marketing.