SHARE

Microsoft released the August 2019 Microsoft Office security updates for protection against malicious attackers. These update is bundling a total of 20 security updates and 4 cumulative updates across seven different products.

Unlike in previous months, none of the vulnerabilities that have been patched today were under attack, or had their details publicly disclosed online.

The new cumulative update KB4512508 brings no new features and offer a couple of bug fixes and performance improvements. Aside from that, KB4512508  takes the O.S. version to 18362.295.

Given that some of these Microsoft Office security updates also resolve various critical vulnerabilities, users are strongly advised to install them as soon as possible.

To download security updates for their Microsoft Office installations, users have to click on the corresponding Knowledge Base article in the table below and then to scroll down to the “How to download and install the update” section to download the corresponding update packages.

Image result for Microsoft Releases August Security

August 2019 Microsoft Office security updates

All security updates are available via the Download Center and the Microsoft Update platform. More info is available after following the linked knowledge base articles.

Microsoft Office 2016

ProductKnowledge Base article title and number
Office 2016Security update for Office 2016: August 13, 2019 (KB4475538)
Outlook 2016Security update for Outlook 2016: August 13, 2019 (KB4475553)
Word 2016Security update for Word 2016: August 13, 2019 (KB4475540)

Microsoft Office 2013

ProductKnowledge Base article title and number
Office 2013Security update for Office 2013: August 13, 2019 (KB4464599)
Outlook 2013Security update for Outlook 2013: August 13, 2019 (KB4475563)
Word 2013Security update for Word 2013: August 13, 2019 (KB4475547)

Microsoft Office 2010

ProductKnowledge Base article title and number
Office 2010Security update for Office 2010: August 13, 2019 (KB4475506)
Office 2010Security update for Office 2010: August 13, 2019 (KB4475531)
Outlook 2010Security update for Outlook 2010: August 13, 2019 (KB4475573)
Word 2010Security update for Word 2010: August 13, 2019 (KB4475533)

Microsoft SharePoint Server 2019

ProductKnowledge Base article title and number
Office Online ServerSecurity update for Office Online Server: August 13, 2019 (KB4475528)
SharePoint Server 2019Security update for SharePoint Server 2019: August 13, 2019 (KB4475555)

Microsoft SharePoint Server 2016

ProductKnowledge Base article title and number
SharePoint Enterprise Server 2016Security update for SharePoint Enterprise Server 2016: August 13, 2019 (KB4475549)

Microsoft SharePoint Server 2013

ProductKnowledge Base article title and number
Office Web Apps Server 2013Security update for Office Web Apps Server 2013: August 13, 2019 (KB4462216)
SharePoint Enterprise Server 2013Security update for SharePoint Enterprise Server 2013: August 13, 2019 (KB4475557)
SharePoint Enterprise Server 2013Cumulative update for SharePoint Enterprise Server 2013 (KB4475561)
SharePoint Enterprise Server 2013Security update for SharePoint Enterprise Server 2013: August 13, 2019 (KB4462137)
SharePoint Foundation 2013Cumulative update for SharePoint Foundation 2013 (KB4475559)
SharePoint Foundation 2013Security update for SharePoint Foundation 2013: August 13, 2019 (KB4475565)

Microsoft SharePoint Server 2010

ProductKnowledge Base article title and number
Project Server 2010Cumulative update for Project Server 2010 (KB4475570)
SharePoint Foundation 2010Security update for SharePoint Foundation 2010: August 13, 2019 (KB4475575)
SharePoint Server 2010Cumulative update for SharePoint Server 2010 (KB4475572)
SharePoint Server 2010Security update for SharePoint Server 2010: August 13, 2019 (KB4475530)
SharePoint Server 2010 Office Web AppsSecurity update for SharePoint Server 2010 Office Web Apps: August 13, 2019 (KB4475534)
Image result for Microsoft Releases August Security

Critical August 2019 Security Updates

Details on the vulnerabilities can be found at the following URL:
https://portal.msrc.microsoft.com/en-US/security-guidance/releasenotedetail/312890cc-3673-e911-a991-000d3a33a34d

Below is the list of Microsoft Knowledge Base (KB) that are rated as “critical”

CVE-2019-0720
Hyper-V Remote Code Execution Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0720
– KB4511553, KB4512476, KB4512482, KB4512486, KB4512488, KB4512489
KB4512491, KB4512497, KB4512501, KB4512506, KB4512507, KB4512516
KB4512517, KB4512518

CVE-2019-0736
Windows DHCP Client Remote Code Execution Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0736
– KB4512476, KB4512482, KB4512486, KB4512488, KB4512489, KB4512491
KB4512497, KB4512501, KB4512506, KB4512507, KB4512516, KB4512517
KB4512518

CVE-2019-0965
Windows Hyper-V Remote Code Execution Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0965
– KB4511553, KB4512501, KB4512508, KB4512516

CVE-2019-1131
Chakra Scripting Engine Memory Corruption Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1131
– KB4511553, KB4512501, KB4512508, KB4512516

CVE-2019-1133
Scripting Engine Memory Corruption Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1133
– KB4511553, KB4511872, KB4512488, KB4512497, KB4512501, KB4512506
KB4512507, KB4512508, KB4512516, KB4512517

CVE-2019-1139
Chakra Scripting Engine Memory Corruption Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1139
– KB4511553, KB4512497, KB4512501, KB4512507, KB4512508, KB4512516
KB4512517

CVE-2019-1140
Chakra Scripting Engine Memory Corruption Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1140
– KB4511553, KB4512497, KB4512501, KB4512507, KB4512508, KB4512516
KB4512517

CVE-2019-1141
Chakra Scripting Engine Memory Corruption Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1141
– KB4511553, KB4512508

CVE-2019-1144
Microsoft Graphics Remote Code Execution Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1144
– KB4511553, KB4512476, KB4512482, KB4512486, KB4512488, KB4512489
KB4512491, KB4512497, KB4512501, KB4512506, KB4512507, KB4512508
KB4512516, KB4512517, KB4512518

CVE-2019-1145
Microsoft Graphics Remote Code Execution Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1145
– KB4511553, KB4512476, KB4512482, KB4512486, KB4512488, KB4512489
KB4512491, KB4512497, KB4512501, KB4512506, KB4512507, KB4512508
KB4512516, KB4512517, KB4512518

CVE-2019-1149
Microsoft Graphics Remote Code Execution Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1149
– KB4511553, KB4512476, KB4512482, KB4512486, KB4512488, KB4512489
KB4512491, KB4512497, KB4512501, KB4512506, KB4512507, KB4512508
KB4512516, KB4512517, KB4512518

CVE-2019-1150
Microsoft Graphics Remote Code Execution Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1150
– KB4511553, KB4512476, KB4512482, KB4512486, KB4512488, KB4512489
KB4512491, KB4512497, KB4512501, KB4512506, KB4512507, KB4512508
KB4512516, KB4512517, KB4512518

CVE-2019-1151
Microsoft Graphics Remote Code Execution Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1151
– KB4511553, KB4512476, KB4512482, KB4512486, KB4512488, KB4512489
KB4512491, KB4512497, KB4512501, KB4512506, KB4512507, KB4512508
KB4512516, KB4512517, KB4512518

CVE-2019-1152
Microsoft Graphics Remote Code Execution Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1152
– KB4511553, KB4512476, KB4512482, KB4512486, KB4512488, KB4512489
KB4512491, KB4512497, KB4512501, KB4512506, KB4512507, KB4512508
KB4512516, KB4512517, KB4512518

CVE-2019-1181
Remote Desktop Services Remote Code Execution Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1181
– KB4511553, KB4512482, KB4512486, KB4512488, KB4512489, KB4512497
KB4512501, KB4512506, KB4512507, KB4512508, KB4512516, KB4512517
KB4512518

CVE-2019-1182
Remote Desktop Services Remote Code Execution Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1182
– KB4511553, KB4512482, KB4512486, KB4512488, KB4512489, KB4512497
KB4512501, KB4512506, KB4512507, KB4512508, KB4512516, KB4512517
KB4512518

CVE-2019-1183
Windows VBScript Engine Remote Code Execution Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1183
– KB4511553, KB4512476, KB4512482, KB4512486, KB4512488, KB4512489
KB4512491, KB4512497, KB4512501, KB4512506, KB4512507, KB4512508
KB4512516, KB4512517, KB4512518

CVE-2019-1188
LNK Remote Code Execution Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1188
– KB4511553, KB4512501, KB4512508, KB4512516

CVE-2019-1194
Scripting Engine Memory Corruption Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1194
– KB4511553, KB4511872, KB4512488, KB4512497, KB4512501, KB4512506
KB4512507, KB4512508, KB4512516, KB4512517

CVE-2019-1195
Chakra Scripting Engine Memory Corruption Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1195
– KB4511553, KB4512501, KB4512507, KB4512508, KB4512516, KB4512517

CVE-2019-1196
Chakra Scripting Engine Memory Corruption Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1196
– KB4511553, KB4512501, KB4512507, KB4512508, KB4512516

CVE-2019-1197
Chakra Scripting Engine Memory Corruption Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1197
– KB4511553, KB4512497, KB4512501, KB4512507, KB4512508, KB4512516
KB4512517

CVE-2019-1199
Microsoft Outlook Memory Corruption Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1199
– The KB number is not assigned

CVE-2019-1200
Microsoft Outlook Remote Code Execution Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1200
– KB4475553, KB4475563, KB4475573

CVE-2019-1201
Microsoft Word Remote Code Execution Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1201
– KB4462137, KB4462216, KB4475528, KB4475530, KB4475531, KB4475533
KB4475534, KB4475540, KB4475547, KB4475549, KB4475555

CVE-2019-1205
Microsoft Word Remote Code Execution Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1205
– KB4475528, KB4475555

CVE-2019-1213
Windows DHCP Server Remote Code Execution Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1213
– KB4512476, KB4512491

CVE-2019-1222
Remote Desktop Services Remote Code Execution Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1222
– KB4511553, KB4512501, KB4512508

CVE-2019-1226
Remote Desktop Services Remote Code Execution Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1226
– KB4511553, KB4512501, KB4512508

Also, as for vulnerabilities in Remote Desktop Services(CVE-2019-1181/1182), Microsoft published a blog and recommended users of affected system to apply the patch as quickly as possible as any future malware that exploits the vulnerability could propagate from vulnerable computer to vulnerable computer without user interaction.

Microsoft Security Response Center (MSRC)
Patch new wormable vulnerabilities in Remote Desktop Services (CVE-2019-1181/1182)
https://msrc-blog.microsoft.com/2019/08/13/patch-new-wormable-vulnerabilities-in-remote-desktop-services-cve-2019-1181-1182/

Microsoft inc also confirm that the Windows 7 and Windows Server 2008 R2 will be out of extended support and no longer receiving updates as of January 14, 2020. Hence, it is strongly recommend that users update any computers running Windows 7 or Windows Server 2008 R2 so you will continue receiving security updates.

LEAVE A REPLY