"An unauthenticated attacker could exploit this vulnerability by establishing a machine-in-the-middle (MITM) attack or other local network spoofing technique, then sending a malicious Kerberos message to the client victim machine to spoof itself as the Kerberos authentication server," Microsoft explained.
And, as Zero Day Initiative's Dustin Childs notes, this "means they expect to see public exploit code within 30 days. Make sure to test and deploy this update quickly."
#patch-tuesday #microsoft #windows-security-updates #chrome-flaws #cves #security-vulnerabilities #kerberos #hyper-v #adobe #substance-3d-stager
[
add
]
[
|
|
...
]