"As usual, the vast majority of the Microsoft release fixes Elevation of Privilege (EoP) bugs. Also as usual, most simply lead to local attackers executing their code at SYSTEM-level privileges or administrative privileges, so there's not much to add without further technical details about the bugs themselves. There are also a few bugs that just state the attacker could "gain ELEVAT"
The fixes include multiple critical vulnerabilities with different exploitation requirements. Some issues are already mitigated by Microsoft and are being documented, so end users do not need immediate action for those specific bugs. Office vulnerabilities include a Preview Pane attack vector, while an Office for Android issue can be exploited by simply opening and owning. A WiFi driver flaw requires a network-adjacent attacker, and a SharePoint flaw requires authentication that is available to users with site privileges. A Jira and Confluence SSO Plugin flaw functions as an authentication bypass. Code execution bugs are mostly “open and own,” while others require high privileges, adjacent attackers, or authentication. A kernel vulnerability could allow code execution by sending specially crafted NVMe over Fabrics response messages with an invalid header length during the connection handshake. Most elevation of privilege fixes enable local attackers to run code at SYSTEM or administrative privileges.
#microsoft-security-updates #elevation-of-privilege #office-vulnerabilities #kernel-code-execution #authentication-bypass
Read at Zero Day Initiative
Unable to calculate read time
Collection
[
|
...
]