{"id":32229,"date":"2019-12-10T21:30:00","date_gmt":"2019-12-10T21:30:00","guid":{"rendered":"https:\/\/www.darkreading.com\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\/d\/d-id\/1336573"},"modified":"2019-12-10T21:30:00","modified_gmt":"2019-12-10T21:30:00","slug":"microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\/","title":{"rendered":"Microsoft Fixes Windows Zero-Day on Lightest Patch Tuesday of 2019"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/twimgs.com\/nojitter\/darkreading\/dr-logo.jpg\" class=\"ff-og-image-inserted\"><\/div>\n<header>\n<\/header>\n<p><span class=\"strong black\">This month&#8217;s batch of security updates addresses 36 CVEs, seven of which are rated Critical and one of which has been exploited in the wild.<\/span> <\/p>\n<p class>Today marks the last Patch Tuesday of 2019 and Microsoft&#8217;s lightest of the year, with fixes for 36 vulnerabilities including one Windows zero-day flaw that has been exploited in the wild.<\/p>\n<p>The elevation of privilege bug under active attack (<a href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-1458\" target=\"_blank\" rel=\"noopener noreferrer\">CVE-2019-1458<\/a>) exists when the Win32k component fails to properly handle objects in memory. An attacker could exploit this by first logging onto the system and running a specially crafted application to take control of a system. If successful, the attacker could install programs; view, change, or delete data; or create new accounts with full user rights. Today&#8217;s update addresses the way Win32k handles objects in memory.<\/p>\n<p>Researchers with Kaspersky Labs <a href=\"https:\/\/securelist.com\/windows-0-day-exploit-cve-2019-1458-used-in-operation-wizardopium\/95432\/\" target=\"_blank\" rel=\"noopener noreferrer\">discovered<\/a> this zero-day while investigating Operation WizardOpium, which leverages a separate zero-day in Google Chrome (CVE-2019-13720). In these attacks, they learned, the Chrome exploit embeds CVE-2019-1458 so attackers can gain higher privileges on an infected machine while escaping the Chrome process sandbox.<\/p>\n<p>Analysis of the privilege escalation exploit revealed the vulnerability belonged to the win32k.sys driver, and it works on the latest versions of Windows 7 and a few builds of Windows 10. New builds of Windows 10 are not affected because they contain measures to prevent the normal use of exploitable code, the researchers explain. It&#8217;s worth noting this also affects Windows Server 2008, which, along with Windows 7, will no longer receive security updates after Jan. 14.<\/p>\n<p>CVE-2019-1458 may have been the only vulnerability under attack, but it wasn&#8217;t the only notable bug this month. Critical patches included a fix for <a href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-1468\" target=\"_blank\" rel=\"noopener noreferrer\">CVE-2019-1468<\/a>, a remote code execution vulnerability in Win32k graphics. A flaw exists when the Windows font library improperly handles specially crafted embedded fonts. There are a few ways to abuse this.<\/p>\n<p>&#8220;To exploit the flaw, an attacker could use social-engineering tactics to either convince their victim to visit a specially crafted website containing the exploit code or by embedding the exploit code in a specially crafted document and enticing their victim to open it,&#8221; says Satnam Narang, senior research engineer at Tenable. Successful exploitation could enable an attacker to install programs, manipulate or delete data, or create new accounts with user privileges.<\/p>\n<p>Five of the Critical vulnerabilities patched today are remote code execution flaws in Git for Visual Studio: CVE-2019-1349, CVE-2019-1350, CVE-2019-1352, CVE-2019-1354, and CVE-2019-1387. The seventh Critical bug, CVE-2019-1471, is a Windows Hyper-V remote code execution vulnerability.<\/p>\n<p><a href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-1349\" target=\"_blank\" data-saferedirecturl=\"https:\/\/www.google.com\/url?q=https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-1349&amp;source=gmail&amp;ust=1576101531431000&amp;usg=AFQjCNGCZJOOQn_mPUzpJ64ludVz7_H29Q\" rel=\"noopener noreferrer\">CVE-2019-1349<\/a>, one of the remote code execution bugs in Git for Visual Studio, could put engineering teams at risk for malware attacks, lateral movement, rogue account creation, and theft of proprietary app code, warns Richard Melick, senior technical product manager at Automox. The vulnerability exists when the Git for Visual Studio client improperly sanitizes input, he notes.<\/p>\n<p>&#8220;As Visual Studio is one of the most popular development environments used today to design and build applications, this exploit puts engineering organizations on the front lines of a potential attack,&#8221; says Melick. To exploit the bug, an attacker would need to use the Git client to download a malicious repository to a target machine. Basic online research could tell an attacker about an organization&#8217;s use of Visual Studio and details of open source projects. From there, a well-crafted phishing email could grant an attacker entry into the target network.<\/p>\n<p>December&#8217;s Patch Tuesday, with only 36 vulnerabilities fixed, is Microsoft&#8217;s smallest security update this year and its lightest in a long time. November&#8217;s rollout <a href=\"https:\/\/www.darkreading.com\/threat-intelligence\/microsoft-patches-ie-zero-day-among-74-vulnerabilities\/d\/d-id\/1336341\" target=\"_blank\" rel=\"noopener noreferrer\">addressed<\/a> 74 vulnerabilities, including an Internet Explorer zero-day; October&#8217;s <a href=\"https:\/\/www.darkreading.com\/endpoint\/microsoft-issues-9-critical-security-patches-\/d\/d-id\/1336036\" target=\"_blank\" rel=\"noopener noreferrer\">fixed<\/a> 59 bugs. September <a href=\"https:\/\/www.darkreading.com\/risk\/two-zero-days-fixed-in-microsoft-patch-rollout\/d\/d-id\/1335776\" target=\"_blank\" rel=\"noopener noreferrer\">arrived<\/a> with patches for 80 vulnerabilities, including two that had been previously exploited in the wild.<\/p>\n<p>Dustin Childs of the Zero-Day Initiative notes a light December isn&#8217;t uncommon for Microsoft. &#8220;While this is a much lower quantity of CVEs compared to other months, it is quite common for Microsoft to have a light December release,&#8221; he explains in a <a href=\"https:\/\/www.zerodayinitiative.com\/blog\/2019\/12\/10\/the-december-2019-security-update-review\" target=\"_blank\" rel=\"noopener noreferrer\">blog post<\/a> on today&#8217;s updates.<\/p>\n<p><strong>Related Content:<\/strong><\/p>\n<p> <span class=\"italic\">Kelly Sheridan is the Staff Editor at Dark Reading, where she focuses on cybersecurity news and analysis. She is a business technology journalist who previously reported for InformationWeek, where she covered Microsoft, and Insurance &amp; Technology, where she covered financial &#8230; <a href=\"https:\/\/www.darkreading.com\/author-bio.asp?author_id=837\">View Full Bio<\/a><\/span> <\/p>\n<p><span class=\"smaller strong red allcaps\">More Insights<\/span><\/p>\n<p> Read More <a href=\"https:\/\/www.darkreading.com\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\/d\/d-id\/1336573?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>This month&#8217;s batch of security updates addresses 36 CVEs, seven of which are rated Critical and one of which has been exploited in the wild. Read More <a href=\"https:\/\/www.darkreading.com\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\/d\/d-id\/1336573?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple\">HERE<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[151],"tags":[],"class_list":["post-32229","post","type-post","status-publish","format-standard","hentry","category-darkreading-ti"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Microsoft Fixes Windows Zero-Day on Lightest Patch Tuesday of 2019 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Microsoft Fixes Windows Zero-Day on Lightest Patch Tuesday of 2019 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2019-12-10T21:30:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/twimgs.com\/nojitter\/darkreading\/dr-logo.jpg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Microsoft Fixes Windows Zero-Day on Lightest Patch Tuesday of 2019\",\"datePublished\":\"2019-12-10T21:30:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\\\/\"},\"wordCount\":738,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/twimgs.com\\\/nojitter\\\/darkreading\\\/dr-logo.jpg\",\"articleSection\":[\"DarkReading |TI\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\\\/\",\"name\":\"Microsoft Fixes Windows Zero-Day on Lightest Patch Tuesday of 2019 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/twimgs.com\\\/nojitter\\\/darkreading\\\/dr-logo.jpg\",\"datePublished\":\"2019-12-10T21:30:00+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\\\/#primaryimage\",\"url\":\"https:\\\/\\\/twimgs.com\\\/nojitter\\\/darkreading\\\/dr-logo.jpg\",\"contentUrl\":\"https:\\\/\\\/twimgs.com\\\/nojitter\\\/darkreading\\\/dr-logo.jpg\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Microsoft Fixes Windows Zero-Day on Lightest Patch Tuesday of 2019\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Microsoft Fixes Windows Zero-Day on Lightest Patch Tuesday of 2019 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\/","og_locale":"en_US","og_type":"article","og_title":"Microsoft Fixes Windows Zero-Day on Lightest Patch Tuesday of 2019 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2019-12-10T21:30:00+00:00","og_image":[{"url":"https:\/\/twimgs.com\/nojitter\/darkreading\/dr-logo.jpg","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Microsoft Fixes Windows Zero-Day on Lightest Patch Tuesday of 2019","datePublished":"2019-12-10T21:30:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\/"},"wordCount":738,"commentCount":0,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\/#primaryimage"},"thumbnailUrl":"https:\/\/twimgs.com\/nojitter\/darkreading\/dr-logo.jpg","articleSection":["DarkReading |TI"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.threatshub.org\/blog\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\/","url":"https:\/\/www.threatshub.org\/blog\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\/","name":"Microsoft Fixes Windows Zero-Day on Lightest Patch Tuesday of 2019 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\/#primaryimage"},"thumbnailUrl":"https:\/\/twimgs.com\/nojitter\/darkreading\/dr-logo.jpg","datePublished":"2019-12-10T21:30:00+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\/#primaryimage","url":"https:\/\/twimgs.com\/nojitter\/darkreading\/dr-logo.jpg","contentUrl":"https:\/\/twimgs.com\/nojitter\/darkreading\/dr-logo.jpg"},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/microsoft-fixes-windows-zero-day-on-lightest-patch-tuesday-of-2019\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"Microsoft Fixes Windows Zero-Day on Lightest Patch Tuesday of 2019"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/32229","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=32229"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/32229\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=32229"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=32229"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=32229"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}