{"id":338,"date":"2019-11-14T15:01:56","date_gmt":"2019-11-14T15:01:56","guid":{"rendered":"https:\/\/aiqon.com.br\/blog\/?p=338"},"modified":"2020-02-05T17:30:18","modified_gmt":"2020-02-05T20:30:18","slug":"patch-tuesday-novembro","status":"publish","type":"post","link":"https:\/\/aiqon.com.br\/blog\/patch-tuesday-novembro\/","title":{"rendered":"Patch Tuesday de Novembro"},"content":{"rendered":"<div id=\"bsf_rt_marker\"><\/div><p>A Microsoft lan\u00e7ou 74 atualiza\u00e7\u00f5es no Patch Tuesday de Novembro, incluindo 13 atualiza\u00e7\u00f5es cr\u00edticas e uma corre\u00e7\u00e3o para uma vulnerabilidade de c\u00f3digo de execu\u00e7\u00e3o remota no Internet Explorer.<\/p><div id=\"ez-toc-container\" class=\"ez-toc-v2_0_85 ez-toc-wrap-left counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Nesse Artigo<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Alternar tabela de conte\u00fado\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/aiqon.com.br\/blog\/patch-tuesday-novembro\/#Patch_Tuesday_de_Novembro_de_2019_O_que_esperar\" >Patch Tuesday de Novembro de 2019: O que esperar<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/aiqon.com.br\/blog\/patch-tuesday-novembro\/#Atualizacoes_de_alta_prioridade_porem_nao_criticas\" >Atualiza\u00e7\u00f5es de alta prioridade por\u00e9m n\u00e3o cr\u00edticas<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/aiqon.com.br\/blog\/patch-tuesday-novembro\/#Ultimas_atualizacoes_da_Adobe\" >\u00daltimas atualiza\u00e7\u00f5es da Adobe<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/aiqon.com.br\/blog\/patch-tuesday-novembro\/#Atualizacao_de_Novembro_de_2019_do_Patch_Tuesday\" >Atualiza\u00e7\u00e3o de Novembro de 2019 do Patch Tuesday<\/a><\/li><\/ul><\/nav><\/div>\n\n<h2 id=\"patch-tuesday-de-novembro-de-2019-o-que-esperar\"><span class=\"ez-toc-section\" id=\"Patch_Tuesday_de_Novembro_de_2019_O_que_esperar\"><\/span><strong>Patch Tuesday de Novembro de 2019: O que esperar<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>A Microsoft lan\u00e7ou no \u00faltimo Patch Tuesday 74 atualiza\u00e7\u00f5es, das quais 13 s\u00e3o cr\u00edticas e 61 s\u00e3o importantes.<\/p>\n<p>O\u00a0<strong>CVE-2019-1429<\/strong>\u00a0foi lan\u00e7ado para corrigir um bug que estava sendo utilizado como uma \u201carma\u201d para ataques. Essa vulnerabilidade pode ser tratada como uma atualiza\u00e7\u00e3o direcionada a aqueles que ainda usam o Internet Explorer. Previamente, recomendamos parar de usar o IE e isto nos da mais um motivo para procurar por navegadores mais seguros para o seu neg\u00f3cio.<\/p>\n<p>Robert brown, diretor de servi\u00e7os da Syxsense disse, \u201c<em>O maior risco que nossos clientes podem ter, \u00e9 n\u00e3o tratar vulnerabilidades que s\u00e3o transformadas em armas para atacantes de maneira s\u00e9ria. Vulnerabilidades transformadas em armas normalmente n\u00e3o s\u00e3o do maior n\u00edvel de severidade e acaba n\u00e3o sendo priorizado pela equipe de T.I e Seguran\u00e7a. Neste caso, a severidade \u00e9 cr\u00edtica. Se a vulnerabilidade for explorada, ela pode ser usada para espalhar ransomware ou tomar um sistema. Por favor, aplique este patch o mais r\u00e1pido poss\u00edvel.<\/em>\u201d<\/p>\n<h2 id=\"atualiza\u00e7\u00f5es-de-alta-prioridade-por\u00e9m-n\u00e3o-cr\u00edticas\"><span class=\"ez-toc-section\" id=\"Atualizacoes_de_alta_prioridade_porem_nao_criticas\"><\/span><strong>Atualiza\u00e7\u00f5es de alta prioridade por\u00e9m n\u00e3o cr\u00edticas<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><strong>CVE-2019-1384<\/strong>\u00a0e o\u00a0<strong>CVE-2019-1424<\/strong>\u00a0foram ranqueados apenas como importante pela Microsoft, entretanto, a CVSS os pontuou como 8,5 e 8,1 respectivamente. O\u00a0<strong>CVE-2019-1384<\/strong>\u00a0\u00e9 uma vulnerabilidade que impacta todos os sistemas operacionais Windows desde o 7 at\u00e9 o Windows Server 2019 onde o atacante pode obter uma chave e assinar mensagens fazendo com que alguns registros de seguran\u00e7a da auditoria se tornem redundantes. Ele tamb\u00e9m pode infectar outras esta\u00e7\u00f5es.<\/p>\n<p>N\u00f3s acreditamos que o CVE-2019-1424 \u00e9 particularmente perigoso. Se exposta, essa vulnerabilidade pode declinar os canais de comunica\u00e7\u00e3o segura levando mensagens a serem enviadas ao Windows de forma impr\u00f3pria, possivelmente sendo at\u00e9 interceptados e gravados.<\/p>\n<h2 id=\"\u00faltimas-atualiza\u00e7\u00f5es-da-adobe\"><span class=\"ez-toc-section\" id=\"Ultimas_atualizacoes_da_Adobe\"><\/span><strong>\u00daltimas atualiza\u00e7\u00f5es da Adobe<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>O patch tuesday do m\u00eas de novembro inclui atualiza\u00e7\u00f5es da Adobe para o Adobe Anime CC, Illustrator CC, Bridge CC e o Media Encode. O patch do Media Encoder inclui um ajuste cr\u00edtico de um externo que poderia permitir a execu\u00e7\u00e3o de c\u00f3digo. <strong>Tanto o Syxsense quanto a Adobe recomenda que esta atualiza\u00e7\u00e3o seja aplicada dentro dos pr\u00f3ximos 7 dias.<\/strong><\/p>\n<p><a href=\"https:\/\/lps.aiqon.com.br\/syxsense_trial\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-426 size-full\" src=\"https:\/\/aiqon.com.br\/blog\/wp-content\/uploads\/2019\/12\/syxsense-trial-bottom.jpg\" alt=\"trial_syxsense\" width=\"1000\" height=\"250\" srcset=\"https:\/\/aiqon.com.br\/blog\/wp-content\/uploads\/2019\/12\/syxsense-trial-bottom.jpg 1000w, https:\/\/aiqon.com.br\/blog\/wp-content\/uploads\/2019\/12\/syxsense-trial-bottom-300x75.jpg 300w, https:\/\/aiqon.com.br\/blog\/wp-content\/uploads\/2019\/12\/syxsense-trial-bottom-768x192.jpg 768w\" sizes=\"auto, (max-width: 1000px) 100vw, 1000px\" \/><\/a><\/p>\n<h2 id=\"atualiza\u00e7\u00e3o-de-novembro-de-2019-do-patch-tuesday\"><span class=\"ez-toc-section\" id=\"Atualizacao_de_Novembro_de_2019_do_Patch_Tuesday\"><\/span><strong>Atualiza\u00e7\u00e3o de Novembro de 2019 do Patch Tuesday<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Com base na severidade do fabricante e da pontua\u00e7\u00e3o do CVSS, aqui vai algumas recomenda\u00e7\u00f5es sobre o que priorizar este m\u00eas. Preste bem aten\u00e7\u00e3o na coluna de \u201cConhecimento p\u00fablico\u201d e \u201cArmamentiza\u00e7\u00e3o\u201d<\/p>\n<table style=\"height: 3753px;\" width=\"1059\">\n<thead>\n<tr>\n<th>Referencia CVE<\/th>\n<th>Descri\u00e7\u00e3o<\/th>\n<th>Severidade do Fabricante<\/th>\n<th>Pontua\u00e7\u00e3o Base CVSS<\/th>\n<th>Conhecimento P\u00fablico<\/th>\n<th>Utilizado como arma para ataques?<\/th>\n<th>Syxsense Recomenda<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td>CVE-2019-1429<\/td>\n<td>Scripting Engine Memory Corruption Vulnerability<\/td>\n<td>Critico<\/td>\n<td>7.5<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1373<\/td>\n<td>Microsoft Exchange Remote Code Execution Vulnerability<\/td>\n<td>Critico<\/td>\n<td>NA<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1457<\/td>\n<td>Microsoft Office Excel Security Feature Bypass<\/td>\n<td>Importante<\/td>\n<td>NA<\/td>\n<td>Sim<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1384<\/td>\n<td>Microsoft Windows Security Feature Bypass Vulnerability<\/td>\n<td>Importante<\/td>\n<td>8.5<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1424<\/td>\n<td>NetLogon Security Feature Bypass Vulnerability<\/td>\n<td>Importante<\/td>\n<td>8.1<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-0721<\/td>\n<td>Hyper-V Remote Code Execution Vulnerability<\/td>\n<td>Critico<\/td>\n<td>8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1419<\/td>\n<td>OpenType Font Parsing Remote Code Execution Vulnerability<\/td>\n<td>Critico<\/td>\n<td>7.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1379<\/td>\n<td>Windows Data Sharing Service Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1380<\/td>\n<td>Microsoft splwow64 Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1382<\/td>\n<td>Microsoft ActiveX Installer Service Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1383<\/td>\n<td>Windows Data Sharing Service Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1385<\/td>\n<td>Windows AppX Deployment Extensions Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1388<\/td>\n<td>Windows Certificate Dialog Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1393<\/td>\n<td>Win32k Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1394<\/td>\n<td>Win32k Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1395<\/td>\n<td>Win32k Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1396<\/td>\n<td>Win32k Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1405<\/td>\n<td>Windows UPnP Service Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1407<\/td>\n<td>Windows Graphics Component Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1408<\/td>\n<td>Win32k Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1415<\/td>\n<td>Windows Installer Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1416<\/td>\n<td>Windows Subsystem for Linux Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1417<\/td>\n<td>Windows Data Sharing Service Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1420<\/td>\n<td>Windows Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1422<\/td>\n<td>Windows Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1423<\/td>\n<td>Windows Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1456<\/td>\n<td>OpenType Font Parsing Remote Code Execution Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1389<\/td>\n<td>Windows Hyper-V Remote Code Execution Vulnerability<\/td>\n<td>Critico<\/td>\n<td>7.6<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1397<\/td>\n<td>Windows Hyper-V Remote Code Execution Vulnerability<\/td>\n<td>Critico<\/td>\n<td>7.6<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1398<\/td>\n<td>Windows Hyper-V Remote Code Execution Vulnerability<\/td>\n<td>Critico<\/td>\n<td>7.6<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1390<\/td>\n<td>VBScript Remote Code Execution Vulnerability<\/td>\n<td>Critico<\/td>\n<td>7.5<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1430<\/td>\n<td>Microsoft Windows Media Foundation Remote Code Execution Vulnerability<\/td>\n<td>Critico<\/td>\n<td>7.3<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1370<\/td>\n<td>Open Enclave SDK Information Disclosure Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1392<\/td>\n<td>Windows Kernel Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1433<\/td>\n<td>Windows Graphics Component Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1434<\/td>\n<td>Win32k Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1435<\/td>\n<td>Windows Graphics Component Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1437<\/td>\n<td>Windows Graphics Component Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1438<\/td>\n<td>Windows Graphics Component Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>7<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1441<\/td>\n<td>Win32k Graphics Remote Code Execution Vulnerability<\/td>\n<td>Critico<\/td>\n<td>6.7<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td>Sim<\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1406<\/td>\n<td>Jet Database Engine Remote Code Execution Vulnerability<\/td>\n<td>Importante<\/td>\n<td>6.7<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1381<\/td>\n<td>Microsoft Windows Information Disclosure Vulnerability<\/td>\n<td>Importante<\/td>\n<td>6.6<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-0712<\/td>\n<td>Windows Hyper-V Denial of Service Vulnerability<\/td>\n<td>Importante<\/td>\n<td>5.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1309<\/td>\n<td>Windows Hyper-V Denial of Service Vulnerability<\/td>\n<td>Importante<\/td>\n<td>5.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1310<\/td>\n<td>Windows Hyper-V Denial of Service Vulnerability<\/td>\n<td>Importante<\/td>\n<td>5.8<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1374<\/td>\n<td>Windows Error Reporting Information Disclosure Vulnerability<\/td>\n<td>Importante<\/td>\n<td>5.5<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1391<\/td>\n<td>Windows Denial of Service Vulnerability<\/td>\n<td>Importante<\/td>\n<td>5.5<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1409<\/td>\n<td>Windows Remote Procedure Call Information Disclosure Vulnerability<\/td>\n<td>Importante<\/td>\n<td>5.5<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1436<\/td>\n<td>Win32k Information Disclosure Vulnerability<\/td>\n<td>Importante<\/td>\n<td>5.5<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1399<\/td>\n<td>Windows Hyper-V Denial of Service Vulnerability<\/td>\n<td>Importante<\/td>\n<td>5.4<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1324<\/td>\n<td>Windows TCP\/IP Information Disclosure Vulnerability<\/td>\n<td>Importante<\/td>\n<td>5.3<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1412<\/td>\n<td>OpenType Font Driver Information Disclosure Vulnerability<\/td>\n<td>Importante<\/td>\n<td>5<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1440<\/td>\n<td>Win32k Information Disclosure Vulnerability<\/td>\n<td>Importante<\/td>\n<td>5<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2018-12207<\/td>\n<td>Windows Kernel Information Disclosure Vulnerability<\/td>\n<td>Importante<\/td>\n<td>4.7<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-11135<\/td>\n<td>Windows Kernel Information Disclosure Vulnerability<\/td>\n<td>Importante<\/td>\n<td>4.7<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1439<\/td>\n<td>Windows GDI Information Disclosure Vulnerability<\/td>\n<td>Importante<\/td>\n<td>4.7<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1411<\/td>\n<td>DirectWrite Information Disclosure Vulnerability<\/td>\n<td>Importante<\/td>\n<td>4.4<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1432<\/td>\n<td>DirectWrite Information Disclosure Vulnerability<\/td>\n<td>Importante<\/td>\n<td>4.4<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1413<\/td>\n<td>Microsoft Edge Security Feature Bypass Vulnerability<\/td>\n<td>Importante<\/td>\n<td>4.3<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1426<\/td>\n<td>Scripting Engine Memory Corruption Vulnerability<\/td>\n<td>Critico<\/td>\n<td>4.2<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1427<\/td>\n<td>Scripting Engine Memory Corruption Vulnerability<\/td>\n<td>Critico<\/td>\n<td>4.2<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1428<\/td>\n<td>Scripting Engine Memory Corruption Vulnerability<\/td>\n<td>Critico<\/td>\n<td>4.2<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1418<\/td>\n<td>Windows Modules Installer Service Information Disclosure Vulnerability<\/td>\n<td>Importante<\/td>\n<td>3.5<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1234<\/td>\n<td>Azure Stack Spoofing Vulnerability<\/td>\n<td>Importante<\/td>\n<td>NA<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1402<\/td>\n<td>Microsoft Office Information Disclosure Vulnerability<\/td>\n<td>Importante<\/td>\n<td>NA<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1425<\/td>\n<td>Visual Studio Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>NA<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1442<\/td>\n<td>Microsoft Office Security Feature Bypass Vulnerability<\/td>\n<td>Importante<\/td>\n<td>NA<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1443<\/td>\n<td>Microsoft SharePoint Information Disclosure Vulnerability<\/td>\n<td>Importante<\/td>\n<td>NA<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1445<\/td>\n<td>Microsoft Office Online Spoofing Vulnerability<\/td>\n<td>Importante<\/td>\n<td>NA<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1446<\/td>\n<td>Microsoft Excel Information Disclosure Vulnerability<\/td>\n<td>Importante<\/td>\n<td>NA<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1447<\/td>\n<td>Microsoft Office Online Spoofing Vulnerability<\/td>\n<td>Importante<\/td>\n<td>NA<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1448<\/td>\n<td>Microsoft Excel Remote Code Execution Vulnerability<\/td>\n<td>Importante<\/td>\n<td>NA<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1449<\/td>\n<td>Microsoft Office ClickToRun Security Feature Bypass Vulnerability<\/td>\n<td>Importante<\/td>\n<td>NA<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<tr>\n<td>CVE-2019-1454<\/td>\n<td>Windows User Profile Service Elevation of Privilege Vulnerability<\/td>\n<td>Importante<\/td>\n<td>NA<\/td>\n<td>N\u00e3o<\/td>\n<td>N\u00e3o<\/td>\n<td><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<div><\/div>\n<div>Perdeu as informa\u00e7\u00f5es do Patch Tuesday Outubro? <a href=\"https:\/\/aiqon.com.br\/blog\/2019\/10\/18\/patch-tuesday-outubro-2019\/\">Confira nosso artigo com as atualiza\u00e7\u00f5es.<\/a><\/div>\n","protected":false},"excerpt":{"rendered":"<p>A Microsoft lan\u00e7ou 74 atualiza\u00e7\u00f5es no Patch Tuesday de Novembro, incluindo 13 atualiza\u00e7\u00f5es cr\u00edticas e uma corre\u00e7\u00e3o para uma vulnerabilidade de c\u00f3digo de execu\u00e7\u00e3o remota no Internet Explorer. Patch Tuesday de Novembro de 2019: O que esperar A Microsoft lan\u00e7ou no \u00faltimo Patch Tuesday 74 atualiza\u00e7\u00f5es, das quais 13 s\u00e3o cr\u00edticas e 61 s\u00e3o importantes. [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":339,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_feature_clip_id":0,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_post_was_ever_published":false},"categories":[8],"tags":[16,15,11],"class_list":["post-338","post","type-post","status-publish","format-standard","has-post-thumbnail","category-patch-management","tag-microsoft","tag-patch-tuesday","tag-syxsense","czr-hentry"],"jetpack_featured_media_url":"https:\/\/aiqon.com.br\/blog\/wp-content\/uploads\/2020\/02\/Patch-tuesday-nov.png","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/aiqon.com.br\/blog\/wp-json\/wp\/v2\/posts\/338","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/aiqon.com.br\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/aiqon.com.br\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/aiqon.com.br\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/aiqon.com.br\/blog\/wp-json\/wp\/v2\/comments?post=338"}],"version-history":[{"count":3,"href":"https:\/\/aiqon.com.br\/blog\/wp-json\/wp\/v2\/posts\/338\/revisions"}],"predecessor-version":[{"id":439,"href":"https:\/\/aiqon.com.br\/blog\/wp-json\/wp\/v2\/posts\/338\/revisions\/439"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/aiqon.com.br\/blog\/wp-json\/wp\/v2\/media\/339"}],"wp:attachment":[{"href":"https:\/\/aiqon.com.br\/blog\/wp-json\/wp\/v2\/media?parent=338"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/aiqon.com.br\/blog\/wp-json\/wp\/v2\/categories?post=338"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/aiqon.com.br\/blog\/wp-json\/wp\/v2\/tags?post=338"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}