10 matches found
ClickFix Attacks Expand Using Fake CAPTCHAs, Microsoft Scripts, and Trusted Web Services
Cybersecurity researchers have disclosed details of a new campaign that combines ClickFix-style fake CAPTCHAs with a signed Microsoft Application Virtualization App-V script to distribute an information stealer called Amatera. "Instead of launching PowerShell directly, the attacker uses this scri...
The vulnerability of the Windows operating system, related to insecure management of privileges, allows a perpetrator to elevate their privileges.
The vulnerability of the App-V Overlay Filter component in the Windows operating system is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to enhance their privileges...
CVE-2021-26890
CVE-2021-26890 is associated with Microsoft Application Virtualization (App-V). CNNVD’s entry describes a code-injection vulnerability affecting App-V across a range of Windows client/server SKUs (e.g., Windows 10 versions 1809–20H2, Windows Server 2019/2022 variants, and Server Core builds). NVD...
PT-2021-2353
Name of the Vulnerable Software and Affected Versions Windows App-V Overlay Filter affected versions not specified Description The issue is related to insecure privilege management in the Windows App-V Overlay Filter component. It allows attackers to elevate their privileges, potentially affectin...
August 16, 2019—KB4512494 (OS Build 16299.1365)
None None...
March 19, 2019—KB4489894 (OS Build 17134.677)
None None...
September 26, 2018—KB4457136 (OS Build 16299.699)
None None...
September 20, 2018—KB4457141 (OS Build 15063.1358)
None None...
June 21, 2018—KB4284822 (OS Build 16299.522)
None None...
January 17, 2018—KB4057144 (OS Build 15063.877)
None None...