Discord Server Red Security Twitter Donation to Red Security Red Security Youtube Channel Red Security Tumblr Profile
Windscribe
Login or Register to Hide ads and Accessing all features on the forum
Thread Rating:
  • 1 Vote(s) - 3 Average
  • 1
  • 2
  • 3
  • 4
  • 5
News Hackers Exploiting 2 Unpatched Windows 0-Day Vulnerabilities in Wide – Microsoft Warn
#1
Exclamation 
In The Name OF Allah
Al-Salam Alekum

[Image: microsoft-windows-flaw-lets-hackers-use-...41.640.jpg]

Looks like we need to update our Windows 10 OS again and again until we die finally -.-!
Quote:Microsoft issued a security warning for two unpatched critical windows 0-day vulnerabilities and the attackers currently exploiting in wide by executing arbitrary code remotely.


2 Vulnerabilities are uncovered in the Adobe Type Manager Library that affects all versions of Windows, and there is no patch available at this moment.

“Two Windows 0-day remote code execution vulnerabilities exist in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font – Adobe Type 1 PostScript format,” Microsoft says.

The vulnerability described by Microsoft as “Type 1 Font Parsing Remote Code Execution Vulnerability” and the hackers attempting to exploiting these vulnerabilities in multiple ways.

Attackers compromising a user to open a specially crafted document or viewing it in the Windows Preview pane to exploit these Windows 0-day vulnerabilities.

Microsoft also clarifies that the vulnerabilities are used for limited targeted attacks that could leverage unpatched vulnerabilities in the Adobe Type Manager Library.

The Source
Wa Salam Alekum
Rs
* Thankful to Allah *
Kurdy
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
Star News Microsoft Exchange Server DlpUtils AddTenantDlpPolicy Remote Code Execution - CXSecu News 0 57 Yesterday, 08:12 AM
Last Post: News
Star News Four More Bugs Patched in Microsoft’s Azure Sphere IoT Platform News 0 132 08-26-2020, 03:41 AM
Last Post: News
Big Grin News Researchers Warn of High-Severity Dell PowerEdge Server Flaw Mr.Kurd 0 242 07-29-2020, 11:42 AM
Last Post: Mr.Kurd
Big Grin News Credit-Card Skimmer Has Unlikely Target: Microsoft ASP.NET Sites Mr.Kurd 0 198 07-08-2020, 10:13 AM
Last Post: Mr.Kurd
Exclamation News Windows SMB Protocol Bug Let Hackers Leak Kernel Memory & Execute a Code Remotely Mr.Kurd 0 381 06-12-2020, 08:24 AM
Last Post: Mr.Kurd
Exclamation News $100,000 Bounty Apple Zero-day Bug in “Sign in with Apple” Let Hackers Take Takeover Mr.Kurd 0 345 06-01-2020, 07:42 AM
Last Post: Mr.Kurd
Wink News Mozilla Firefox 75 Is Out With Fixes For RCE vulnerabilities Mr.Kurd 0 434 04-13-2020, 01:13 PM
Last Post: Mr.Kurd
Star News Hackers Are Bundling Cryptominer With a Seemingly Legit Zoom Installer on Unofficial Mr.Kurd 0 374 04-08-2020, 08:43 AM
Last Post: Mr.Kurd
Star News Microsoft Edge Now Alerts Users Of Breached Passwords Mr.Kurd 0 387 04-03-2020, 08:09 AM
Last Post: Mr.Kurd
Question News Windows Running MS-SQL Servers Under Attack!! Hackers Installing 10 Secret Backdoors Mr.Kurd 0 327 04-02-2020, 08:38 AM
Last Post: Mr.Kurd



Users browsing this thread: 1 Guest(s)