Discord Server Red Security Twitter Donation to Red Security Red Security Youtube Channel Red Security Tumblr Profile
Login or Register to Hide ads and Accessing all features on the forum
Thread Rating:
  • 1 Vote(s) - 5 Average
  • 1
  • 2
  • 3
  • 4
  • 5
News Urgent !! Windows User Urged to Patch A Critical Crypto Vulnerability on Windows 10
In The Name Of Allah
Al-Salam Alekum

[Image: Windows-vulnerability-patch-update.jpg]

Hello guys, today windows 10 users forced to do a urgent update. Tho, Windows 10 as it is the most used system worldwide it never stops updating. Always their are more focus on top systems to explore holes.

Quote:Microsoft released a patch for this critical cryptographic vulnerability and said that the vulnerability in the usermode cryptographic library, CRYPT32.DLL, that affects Windows 10 systems.
Quote:The vulnerability discovered by the National Security Agency (NSA) and confirmed that this critical bug allows an attacker to perform remote code execution on vulnerable Windows client and server.

This critical bug exploited by an attacker to undermine how Windows verifies cryptographic trust and Validate Elliptic Curve Cryptography (ECC) certificates that enable the RCE to take control of the system.

The Source

Stay Safe and Secure :_)
Wa Salam Alekum
* Thankful to Allah *
This is not so critical.
The RCE which is mentioned is also not as bad as it seems, all that CVE-2020-0601 does is spoofs a sign certificate on executable so it looks like it's signed by a legit company, you still have to double-click the exe or what ever other format that executables come in.
It's the same if I have created a RAT without this exploit, a user would still need to execute it by hand.

Possibly Related Threads…
Thread Author Replies Views Last Post
Star News Vulnerability Prioritization: Are You Getting It Right? News 0 740 08-10-2020, 07:33 PM
Last Post: News
Exclamation News Windows SMB Protocol Bug Let Hackers Leak Kernel Memory & Execute a Code Remotely Mr.Kurd 0 295 06-12-2020, 08:24 AM
Last Post: Mr.Kurd
Smile News Critical Vulnerability In Bisq Crypto Exchange Exploited For Some Users Mr.Kurd 0 267 04-10-2020, 02:46 PM
Last Post: Mr.Kurd
Question News Windows Running MS-SQL Servers Under Attack!! Hackers Installing 10 Secret Backdoors Mr.Kurd 0 253 04-02-2020, 08:38 AM
Last Post: Mr.Kurd
Sad News Critical RCE Bug in WordPress Plugin Let Hackers Gain Admin Access on 200,000 Website Mr.Kurd 0 246 04-01-2020, 11:19 AM
Last Post: Mr.Kurd
Rainbow News Vulnerability In WPvivid Backup Plugin Could Expose Files Of WordPress Sites Mr.Kurd 0 250 04-01-2020, 11:11 AM
Last Post: Mr.Kurd
Rainbow News Microsoft Alerts Users Of Zero-Day RCE Vulnerability In Windows 7 Under Active Exploi Mr.Kurd 0 317 03-26-2020, 09:03 AM
Last Post: Mr.Kurd
Question News Critical Remote Code Execution Bug in Linux Based OpenWrt OS Affects Millions of Netw Mr.Kurd 0 290 03-25-2020, 08:11 AM
Last Post: Mr.Kurd
Exclamation News Hackers Exploiting 2 Unpatched Windows 0-Day Vulnerabilities in Wide – Microsoft Warn Mr.Kurd 0 578 03-24-2020, 07:56 AM
Last Post: Mr.Kurd
Thumbs Down News Slack Vulnerability Allowing Account Takeovers Mr.Kurd 0 244 03-17-2020, 08:11 PM
Last Post: Mr.Kurd

Users browsing this thread: 1 Guest(s)