Microsoft Patch Tuesday, April 2020 Edition

Microsoft today released updates to fix 113 security vulnerabilities in its various Windows operating systems and related software. Those include at least three flaws that are actively being exploited, as well as two others which were publicly detailed prior to today, potentially giving attackers...

December 2012 cumulative time zone update for Windows operating systems

December 2012 cumulative time zone update for Windows operating systems Summary This update supersedes and replaces the update that is described in Microsoft Knowledge Base KB article 2756822 that was released in October 2012. All additional time zone changes released as hotfixes after the update...

Remove Lenovo USB Blocker version 1.0.0.37 to avoid a system crash

Remove Lenovo USB Blocker version 1.0.0.37 to avoid a system crash This article describes a problem that occurs after you install October 2015 security update for Windows Kernel 3088195 on a Windows-based computer. You can work around this problem by using the update in this article, which preven...

The vulnerability of the Windows Installer component on Windows operating systems, which allows a hacker to increase their privileges

The vulnerability of the Windows Installer component in Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...

Vulnerability of Windows operating systems related to insecure privilege management, allowing attackers to execute arbitrary code

The vulnerability of the Windows operating system is related to the insecure management of privileges. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely, using a specially crafted .LNK file...

The vulnerability of the win32k component in Windows operating systems, which allows a hacker to increase their privileges

The vulnerability of the win32k component in Windows operating systems is related to incorrect handling of objects in memory. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially created application...

Vulnerability of Windows operating systems, related to errors in handling hard links, allows attackers to escalate their privileges.

The vulnerability of Windows operating systems is related to errors in handling hard links. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Windows Installer component on Windows operating systems, which allows a hacker to increase their privileges

The vulnerability of the Windows Installer component in Windows operating systems is related to errors in the memory object handling mechanisms. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Graphics Device Interface (GDI) component in Windows operating systems allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Graphics Device Interface GDI component in Windows operating systems is related to improper handling of objects in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information through a specially created application...

The vulnerability in the implementation of the Server Message Block (SMBv3) network protocol on Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Server Message Block SMBv3 network protocol implementation in Windows operating systems is related to incorrect handling of requests using data compression algorithms. Exploiting this vulnerability allows a remote attacker to execute arbitrary code with the help of a...

CVE-2020-6799

Command line arguments could have been injected during Firefox invocation as a shell handler for certain unsupported file types. This required Firefox to be configured as the default handler for a given file type and for a file downloaded to be opened in a third party application that...

The vulnerability of the Windows Function Discovery service in Windows operating systems allows a perpetrator to escalate their privileges.

The vulnerability of the Windows Function Discovery service in Windows operating systems is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to increase their privileges through a specially created application...

The vulnerability of Windows Media Services on Windows operating systems allows attackers to increase their privileges.

The vulnerability of Windows Media Services on Windows operating systems is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially created application...

Persistence – Application Shimming

Microsoft in order to resolve the problem with legacy applications that are no compatible with newer Windows operating systems released the application compatibility toolkit ACT. This software enables system administrators and developers to create fix packages for installed applications. The...

The vulnerability of the Win32k component in Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Win32k component in Windows operating systems is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Win32k component in Windows operating systems, which allows attackers to escalate their privileges

The vulnerability of the Win32k component in Windows operating systems is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially created application...

Persistence – Accessibility Features

The accessibility features provide additional options on screen keyboards, magnifier, screen reading etc. that could assist people with disabilities to use Windows operating systems easier. However, this functionality can be abused to achieve persistence on a host that RDP is enabled and...

Persistence – Port Monitors

The print spooler service is responsible for managing printing jobs in Windows operating systems. Interaction with the service is performed through the Print Spooler API which contains a function AddMonitor that can be used to install local port monitors and connects the configuration, data and...

The vulnerability of Windows operating systems, related to errors in memory object handling, allows a perpetrator to trigger a system failure.

The vulnerability of Windows operating systems is related to errors in memory object handling. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

The vulnerability of the Active Directory Federation Services (ADFS) for Windows operating systems allows a perpetrator to execute a cross-site scripting attack.

The vulnerability of Active Directory Federation Services ADFS on Windows operating systems is related to the lack of security measures for the website structure. Exploiting this vulnerability allows a malicious actor to perform a cross-site scripting attack by sending a specially crafted request...