Todays MS updates for Windows 2004

[Hardhead]

https://support.microsoft.com/en-us/help/4566782/windows-10-update-kb4566782

Release Date:August 11, 2020

Version:OS Build 19041.450

Updates to improve security when using input devices (such as a mouse, keyboard, or pen).

Updates to improve security when Windows performs basic operations.

Updates for storing and managing files.

Updates to improve security when using Internet Explorer and Microsoft Edge Legacy.

Updates to improve security when using Microsoft Office products.

Updates for verifying usernames and passwords.

This security update includes quality improvements. Key changes include:

Addresses an issue in Universal Windows Platform (UWP) apps that allows single sign-on authentication when an app does not have the Enterprise Authentication capability. With the release of CVE-2020-1509, UWP applications might begin prompting the user for credentials. 

Security updates to the Microsoft Scripting Engine, Internet Explorer, Windows Graphics, Microsoft Graphics Component, Windows Kernel, Windows Input and Composition, Windows Media, Windows Shell, the Windows Wallet Service, Microsoft Edge Legacy, Windows Cloud Infrastructure, Windows Authentication, the Windows AI Platform, Windows Fundamentals, Windows Storage and Filesystems, Windows Update Stack, Windows File Server and Clustering, Windows Hybrid Storage Services, Windows App Platform and Frameworks, Microsoft JET Database Engine, and Windows SQL components.

If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.

Known issues in this update

SymptomsWorkaround

When using some apps, such as Microsoft Excel, users of the Microsoft Input Method Editor (IME) for Chinese and Japanese might receive an error, or the app might stop responding or close when attempting to drag using the mouse.

For more information and workaround steps, please see KB4564002.

 

https://support.microsoft.com/en-us/help/4569745/kb4569745-cumulative-update-for-net-framework

August 11, 2020-KB4569745 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 2004

An elevation of privilege vulnerability exists when ASP.NET or .NET Framework web applications running on IIS improperly allow access to cached files. An attacker who successfully exploited this vulnerability could gain access to restricted files. To exploit this vulnerability, an attacker would need to send a specially crafted request to an affected server. The update addresses the vulnerability by changing how ASP.NET and .NET Framework handle requests.

To learn more about the vulnerabilities, go to the following Common Vulnerabilities and Exposures (CVE).

CVE-2020-1476

A remote code execution vulnerability exists when Microsoft .NET Framework processes input. An attacker who successfully exploited this vulnerability could take control of an affected system. To exploit the vulnerability, an attacker would need to be able to upload a specially crafted file to a web application. The security update addresses the vulnerability by correcting how .NET Framework processes input.

For more information go to: https://go.microsoft.com/fwlink/?linkid=2138023

To learn more about the vulnerabilities, go to the following Common Vulnerabilities and Exposures (CVE).

CVE-2020-1046

 

Also all MS Office updates too which are note listed..