Discord Server Red Security Twitter Donation to Red Security Red Security Youtube Channel Red Security Tumblr Profile
Login or Register to Hide ads and Accessing all features on the forum

News 

Microsoft Alerts Users Of Zero-Day RCE Vulnerability In Windows 7 Under Active Exploi

0 Replies, 1610 Views

In The Name OF Allah
Al-Salam Alekum

[Image: Microsoft-fixed-800x445.jpg]

Why I feel that Microsoft doing this attack itself????? to get rid of Win7 users at least.

Quote:Reportedly, Microsoft has issued an alert for all users regarding a vulnerability that ships with the Windows operating system. The bug exists in Adobe Type Manager Library (atmfd.dll) which facilitates rendering PostScript Type 1 fonts inside the OS.


What’s troublesome is that before catching the attention of the vendors for a fix, it attracted hackers. Hence, this vulnerability is now under active exploitation. Microsoft have noted the exploitation of this zero-day vulnerability against Windows 7.

Two remote code execution vulnerabilities exist in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font – Adobe Type 1 PostScript format.

There are multiple ways an attacker could exploit the vulnerability, such as convincing a user to open a specially crafted document or viewing it in the Windows Preview pane.



The Source
Wa Salam Alekum
Rs
* Thankful to Allah *
Kurdy

Possibly Related Threads…
Thread Author Replies Views Last Post
Star News Iowa Hospital Alerts 60K Individuals Affected by June Data Breach News 0 1,876 11-20-2020, 02:36 AM
Last Post: News
Star News Update Windows 10 to patch critical vulnerability in Microsoft store games News 0 1,657 11-06-2020, 04:22 AM
Last Post: News
Star News Google Project Zero Discloses Nasty Windows 0-Day Security Exploit Already In The Wi News 0 1,720 11-01-2020, 06:12 AM
Last Post: News
Star News IoT Vulnerability Disclosure Platform Launched News 0 1,786 10-20-2020, 09:58 AM
Last Post: News
Star News Zerologon Vulnerability Used in APT Attacks News 0 1,615 10-07-2020, 11:12 AM
Last Post: News
Star News OAuth Consent Phishing Ramps Up with Microsoft Office 365 Attacks News 1 2,382 10-01-2020, 06:40 PM
Last Post: Mr.Kurd
Star News Vulnerability Disclosure Programs See Signups & Payouts Surge News 0 1,446 09-23-2020, 12:57 PM
Last Post: News
Star News Homeland Security Issues Urgent Windows Security Warning Over Zerologon Exploit News 0 1,560 09-21-2020, 09:26 AM
Last Post: News
Star News Microsoft Exchange Server DlpUtils AddTenantDlpPolicy Remote Code Execution - CXSecu News 0 1,466 09-18-2020, 08:12 AM
Last Post: News
Star News Can Vulnerability Scanning Replace Penetration Testing? News 0 1,544 08-30-2020, 02:08 AM
Last Post: News



Users browsing this thread: 1 Guest(s)