Technology NewsTechnology NewsTechnology News
  • Computing
  • AI
  • Robotics
  • Cybersecurity
  • Electric Vehicle
  • Wearables
  • Gaming
  • Space
Reading: Microsoft Patches 49 Vulnerabilities in June 2024 Update
Share
Font ResizerAa
Technology NewsTechnology News
Font ResizerAa
Search
  • Computing
  • AI
  • Robotics
  • Cybersecurity
  • Electric Vehicle
  • Wearables
  • Gaming
  • Space
Follow US
  • Cookie Policy (EU)
  • Contact
  • About
© 2025 NEWSLINKER - Powered by LK SOFTWARE
Cybersecurity

Microsoft Patches 49 Vulnerabilities in June 2024 Update

Highlights

  • Microsoft patches 49 vulnerabilities in June 2024 update.

  • Critical MSMQ flaw CVE-2024-30080 is fixed.

  • Several RCE and privilege escalation vulnerabilities are addressed.

Ethan Moreno
Last updated: 12 June, 2024 - 6:46 pm 6:46 pm
Ethan Moreno 11 months ago
Share
SHARE

Microsoft’s Patch Tuesday update in June 2024 has addressed several vulnerabilities, including critical and publicly known ones. This comprehensive update aims to enhance the security of various Microsoft products and some non-Microsoft software. Notably, vulnerabilities in Microsoft Message Queuing (MSMQ), Windows Server, and Microsoft Outlook have been highlighted, with potential impacts on system integrity and user data.

Contents
Critical Vulnerability AddressedSignificant RCE and Privilege Escalation Flaws AddressedKey Inferences

Message Queuing, commonly referred to as MSMQ, is a Microsoft technology that allows applications running at different times to communicate across heterogeneous networks and systems that might be temporarily offline. Initially launched in 1997, MSMQ was introduced to handle message queuing needs in enterprise environments, ensuring reliable and asynchronous message delivery. It has since become a critical part of the Windows Server infrastructure, providing robust and scalable message processing capabilities.

Critical Vulnerability Addressed

The update fixes a critical vulnerability in MSMQ tracked as CVE-2024-30080. This flaw, with a CVSS score of 9.8, could be exploited by sending a specially crafted packet to an MSMQ server, leading to remote code execution. This issue affects various versions of Windows, including Windows Server 2008 and Windows 10. To mitigate the risk, the Windows message queuing service must be enabled using the Control Panel. Users can check for the service named Message Queuing and ensure TCP port 1801 is open for listeners.

Significant RCE and Privilege Escalation Flaws Addressed

This update also patches several significant vulnerabilities. CVE-2024-30103 in Microsoft Outlook allows attackers to develop malicious DLL files and bypass Outlook registry block lists. CVE-2024-30078 in the Windows Wi-Fi Driver permits unauthorized attackers to send malicious networking packets for remote code execution. Additionally, CVE-2024-30089 in Microsoft Streaming Service and CVE-2024-30085 in the Windows Cloud Files Mini Filter Driver could enable attackers to gain SYSTEM privileges.

A notable vulnerability, CVE-2024-30082 in Win32k, could lead to elevation of privilege, allowing attackers to gain SYSTEM privileges upon successful exploitation. This highlights the importance of applying security updates promptly to protect against potential threats.

In Windows Server, a known vulnerability, CVE-2023-50868, related to DNSSEC validation is addressed. This issue, although not yet publicly exploited, could allow attackers to consume excessive resources on a resolver, denying service to legitimate users. Microsoft’s detailed list of patched vulnerabilities provides further information about exploitation methods and vulnerability descriptions.

Key Inferences

  • CVE-2024-30080 allows remote code execution via MSMQ.
  • Critical vulnerabilities in Microsoft Outlook and Windows Wi-Fi Driver are addressed.
  • Elevation of privilege vulnerabilities in Win32k and other components are patched.

The June 2024 Patch Tuesday update is essential for safeguarding systems against various security threats. Users should update their software to the latest version to avoid potential exploitation by threat actors. This update addresses both newly discovered and previously known vulnerabilities, emphasizing the need for continuous vigilance in cybersecurity practices.

You can follow us on Youtube, Telegram, Facebook, Linkedin, Twitter ( X ), Mastodon and Bluesky

You Might Also Like

Cyberattack Forces PowerSchool to Face Extortion Scandal

CrowdStrike Faces Workforce Reduction Amid Financial Shifts

Authorities Seize DDoS Platforms in Multi-National Operation

Trump Urges Colorado to Release Jailed Clerk Over Election Breach

Google Targets Vulnerabilities in May Security Update

Share This Article
Facebook Twitter Copy Link Print
Ethan Moreno
By Ethan Moreno
Ethan Moreno, a 35-year-old California resident, is a media graduate. Recognized for his extensive media knowledge and sharp editing skills, Ethan is a passionate professional dedicated to improving the accuracy and quality of news. Specializing in digital media, Moreno keeps abreast of technology, science and new media trends to shape content strategies.
Previous Article Monster Hunter Wilds Innovates Hunt Dynamics
Next Article Musk Ends OpenAI Lawsuit and Criticizes Apple’s ChatGPT Integration

Stay Connected

6.2kLike
8kFollow
2.3kSubscribe
1.7kFollow

Latest News

Mazda Partners with Tesla for Charging Standard Shift
Electric Vehicle
Trump Alters AI Chip Export Strategy, Reversing Biden Controls
AI
Solve Wordle’s Daily Puzzle with These Expert Tips
Gaming
US Automakers Boost Robot Deployment in 2024
Robotics
Uber Expands Autonomy Partnership with $100 Million Investment in WeRide
Robotics
NEWSLINKER – your premier source for the latest updates in ai, robotics, electric vehicle, gaming, and technology. We are dedicated to bringing you the most accurate, timely, and engaging content from across these dynamic industries. Join us on our journey of discovery and stay informed in this ever-evolving digital age.

ARTIFICAL INTELLIGENCE

  • Can Artificial Intelligence Achieve Consciousness?
  • What is Artificial Intelligence (AI)?
  • How does Artificial Intelligence Work?
  • Will AI Take Over the World?
  • What Is OpenAI?
  • What is Artifical General Intelligence?

ELECTRIC VEHICLE

  • What is Electric Vehicle in Simple Words?
  • How do Electric Cars Work?
  • What is the Advantage and Disadvantage of Electric Cars?
  • Is Electric Car the Future?

RESEARCH

  • Robotics Market Research & Report
  • Everything you need to know about IoT
  • What Is Wearable Technology?
  • What is FANUC Robotics?
  • What is Anthropic AI?
Technology NewsTechnology News
Follow US
About Us   -  Cookie Policy   -   Contact

© 2025 NEWSLINKER. Powered by LK SOFTWARE
Welcome Back!

Sign in to your account

Register Lost your password?