Microsoft Patch Tuesday December 2022: SPNEGO RCE, Mark of the Web Bypass, Edge Memory Corruptions

Hello everyone! This episode will be about Microsoft Patch Tuesday for December 2022, including vulnerabilities that were added between November and December Patch Tuesdays. As usual, I use my open source Vulristics project to analyse and prioritize vulnerabilities. But let’s start with an older vulnerability. This will be another example why vulnerability prioritization is a tricky thing and you should patch everything. In the September Microsoft Patch Tuesday there was a vulnerability Information Disclosure - SPNEGO Extended Negotiation (NEGOEX) Security Mechanism (CVE-2022-37958), which was completely unnoticed by everyone. Not a single VM vendor paid attention to it in their reviews. I didn’t pay attention either. 00:28 Remote Code Execution - SPNEGO Extended Negotiation (NEGOEX) Security Mechanism (CVE-2022-37958) 03:14 Security Feature Bypass - Windows SmartScreen (CVE-2022-44698) 04:16 Memory Corruption - Microsoft Edge (CVE-2022-4135, CVE-2022-4262) 05:20 Remote Code Execution - Microsoft PowerShell (CVE-2022-41076) 06:10 Remote Code Execution - Windows Secure Socket Tunneling Protocol (SSTP) 06:54 Elevation of Privilege - DirectX Graphics Kernel (CVE-2022-44710) 07:06 Elevation of Privilege - Windows Print Spooler (CVE-2022-44678, CVE-2022-44681) Blogpost: #microsoft #patchtuesday #SPNEGO