Microsoft Releases Security Updates to Address Remote Code Execution Vulnerability

Archived Content

In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.

Microsoft has released security updates to address a remote code execution vulnerability in the following in-support and out-of-support operating systems:

In-support systems: Windows 7, Windows Server 2008 R2, and Windows Server 2008
Out-of-support systems: Windows 2003 and Windows XP

A remote attacker could exploit this vulnerability to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Microsoft Security Advisory and Microsoft Customer Guidance for CVE-2019-0708 and apply the necessary updates.

Archived Content

Microsoft Releases Security Updates to Address Remote Code Execution Vulnerability

JCDC Cultivates Pre-Ransomware Notification Capability

Cisco Releases Security Advisories for Multiple Products

CISA Releases Six Industrial Control Systems Advisories

Untitled Goose Tool Aids Hunt and Incident Response in Azure, Azure Active Directory, and Microsoft 365 Environments

Archived Content

Microsoft Releases Security Updates to Address Remote Code Execution Vulnerability

Related Advisories

JCDC Cultivates Pre-Ransomware Notification Capability

Cisco Releases Security Advisories for Multiple Products

CISA Releases Six Industrial Control Systems Advisories

Untitled Goose Tool Aids Hunt and Incident Response in Azure, Azure Active Directory, and Microsoft 365 Environments