The June 2024 Security Update Review

Adobe and Microsoft released their regularly scheduled updates for June 2024, with Adobe addressing 165 CVEs in various products and Microsoft releasing 49 CVEs in Windows and other components. The lone Critical-rated patch for this month is the Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability, which allows remote, unauthenticated attackers to execute arbitrary code with elevated privileges. Another notable patch is the Microsoft Outlook Remote Code Execution Vulnerability, which bypasses Outlook registry block lists and enables the creation of malicious DLL files. Microsoft also released patches for various other vulnerabilities, including several "open-and-own" type vulnerabilities and a couple of bugs in the Link Layer Topology Discovery Protocol.