Discord Server Red Security Twitter Donation to Red Security Red Security Youtube Channel Red Security Tumblr Profile
Windscribe
Login or Register to Hide ads and Accessing all features on the forum
Thread Rating:
  • 2 Vote(s) - 4 Average
  • 1
  • 2
  • 3
  • 4
  • 5
News Microsoft Alerts Users Of Zero-Day RCE Vulnerability In Windows 7 Under Active Exploi
#1
Rainbow 
In The Name OF Allah
Al-Salam Alekum

[Image: Microsoft-fixed-800x445.jpg]

Why I feel that Microsoft doing this attack itself????? to get rid of Win7 users at least.

Quote:Reportedly, Microsoft has issued an alert for all users regarding a vulnerability that ships with the Windows operating system. The bug exists in Adobe Type Manager Library (atmfd.dll) which facilitates rendering PostScript Type 1 fonts inside the OS.


What’s troublesome is that before catching the attention of the vendors for a fix, it attracted hackers. Hence, this vulnerability is now under active exploitation. Microsoft have noted the exploitation of this zero-day vulnerability against Windows 7.

Two remote code execution vulnerabilities exist in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font – Adobe Type 1 PostScript format.

There are multiple ways an attacker could exploit the vulnerability, such as convincing a user to open a specially crafted document or viewing it in the Windows Preview pane.



The Source
Wa Salam Alekum
Rs
* Thankful to Allah *
Kurdy
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
Star News Iowa Hospital Alerts 60K Individuals Affected by June Data Breach News 0 584 11-20-2020, 02:36 AM
Last Post: News
Star News Update Windows 10 to patch critical vulnerability in Microsoft store games News 0 383 11-06-2020, 04:22 AM
Last Post: News
Star News Google Project Zero Discloses Nasty Windows 0-Day Security Exploit Already In The Wi News 0 433 11-01-2020, 06:12 AM
Last Post: News
Star News IoT Vulnerability Disclosure Platform Launched News 0 416 10-20-2020, 09:58 AM
Last Post: News
Star News Zerologon Vulnerability Used in APT Attacks News 0 448 10-07-2020, 11:12 AM
Last Post: News
Star News OAuth Consent Phishing Ramps Up with Microsoft Office 365 Attacks News 1 1,162 10-01-2020, 06:40 PM
Last Post: Mr.Kurd
Star News Vulnerability Disclosure Programs See Signups & Payouts Surge News 0 414 09-23-2020, 12:57 PM
Last Post: News
Star News Homeland Security Issues Urgent Windows Security Warning Over Zerologon Exploit News 0 443 09-21-2020, 09:26 AM
Last Post: News
Star News Microsoft Exchange Server DlpUtils AddTenantDlpPolicy Remote Code Execution - CXSecu News 0 454 09-18-2020, 08:12 AM
Last Post: News
Star News Can Vulnerability Scanning Replace Penetration Testing? News 0 497 08-30-2020, 02:08 AM
Last Post: News



Users browsing this thread: 1 Guest(s)