Microsoft Releases Security Updates for its Malware Protection Engine
Description: A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory corruption. An attacker who successfully exploited this vulnerability could execute arbitrary code in the security context of the LocalSystem account and take control of the system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
Impact: A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
Mitigation: Updates are available. Please see the references or vendor advisory for more information.
PetitPotam: Microsoft Windows Server NTLM Relay Attacks on Active Directory Certificate Services (AD CS)
26 Jul 2021 - Security Advisories & Alerts
25 Jul 2021 - Security Advisories & Alerts