![]() Palo Alto Networks Next-Generation Firewall customers deploying a Threat Prevention security subscription, which includes capabilities such as vulnerability protection with an intrusion prevention system (IPS), are protected from zero-day vulnerabilities such as these. Tao Yan, Qi Deng and Bo Qu will share more technical details at Black Hat Asia 2021. Specifically, the patch of CVE-2021-1711 addresses a new type of security issue that Unit 42 researchers discovered. Microsoft Office Remote Code Execution VulnerabilityĪdobe Reader DC Memory Corruption Vulnerability Windows Event Logging Service Elevation of Privilege Vulnerability Quick Look Cross Site Scripting Vulnerability Windows Error Reporting Information Disclosure Vulnerability Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability Windows Error Reporting Denial of Service Vulnerability Windows Error Reporting Elevation of Privilege Vulnerability ![]() Jet Database Engine Remote Code Execution Vulnerability Windows Error Reporting Manager Elevation of Privilege Vulnerability ![]() Windows Application Compatibility Client Library Elevation of Privilege Vulnerability The recently discovered vulnerabilities are listed in Table 1 below: Vendor ![]() The Unit 42 researchers credited are Tao Yan, Zhibin Zhang, Bo Qu, Ronen Haber and Ken Hsu. Lastly, there is an Apple cross site scripting (XSS) vulnerability that could also lead to arbitrary RCE in the context of the currently logged in user. The four Adobe Reader DC vulnerabilities are all critical bugs that allow remote code execution (RCE). Of the 15 new vulnerabilities credited to Unit 42 researchers, 10 come from Microsoft with severity ratings from low to important. Unit 42 researchers have been credited with discovering 15 new vulnerabilities addressed by the Microsoft Security Response Center (MSRC), Adobe Security Bulletin and Apple Security Updates, as part of the last quarter of security update releases. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |