SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) SANS Stormcast Wednesday, June 11th, 2025: Microsoft Patch Tuesday; Acrobat Patches
6 snips
Jun 11, 2025 A deep dive reveals Microsoft patched a staggering 67 vulnerabilities, with 10 critically urgent. One issue is already under attack, highlighting the need for swift updates. Turning to Adobe, the team discusses patches for 7 applications, including crucial updates for Adobe Commerce and Acrobat Reader. The latter's flaws could allow code execution through deceptive PDFs. Cybersecurity is more crucial than ever as these discussions underscore the importance of timely software updates.
AI Snips
Chapters
Transcript
Episode notes
WebDAV Client Vulnerability Insight
- A critical vulnerability in WebDAV affects the client-side component, even without using Internet Explorer directly.
- This vulnerability requires patching Internet Explorer's cumulative update due to leftover MSHTML libraries.
Patch RDP and Crypto Vulnerabilities
- Patch critical remote desktop service and cryptographic service vulnerabilities even if exploitation seems less likely.
- Follow standard patching procedures and closely monitor for any exploit developments due to these critical issues.
Office Vulnerabilities Through Previews
- Microsoft Office vulnerabilities are critical because they allow code execution just by previewing documents.
- This differs from usual cases where opening documents is required, raising the risk level substantially.