Microsoft Releases Corrections for 49 Vulnerabilities in Monthly Patch Tuesday
Microsoft Corporation has addressed a total of 49 vulnerabilities, including 12 remote code execution vulnerabilities, in its latest set of updates released as part of the monthly Patch Tuesday cycle for January 2024.
Out of these updates, only 2 vulnerabilities have received a “critical” assessment.
The first critical vulnerability involves a bypass of the Windows security system that allows a client computer to access a specific service, such as electronic mail, on another computer known as the server. To ensure authorized access, Microsoft’s Kerberos authentication protocol utilizes a Key Distribution Center (KDC) which stores secret keys for all users and services. The KDC issues “tickets” for access purposes.
When a user attempts to enter the system, their computer sends a request to the KDC for a ticket. The KDC verifies the user’s credentials and, if valid, issues a ticket. This ticket is then used to authenticate the user’s identity when communicating with the desired service.
One of the key advantages of Kerberos is its ability to provide mutual authentication, ensuring both the user and the service can verify each other’s identities. This helps prevent attacks where an attacker attempts to impersonate a service.