Lucene search
K

5 matches found

Malwarebytes
Malwarebytes
added 2024/01/03 7:7 p.m.13 views

Microsoft disables ms-appinstaller after malicious use

In what might be conceived as one of Microsoft’s new year resolutions, it has disclosed that its turned off the ms-appinstaller protocol handler by default. The change is designed to make installing apps easier, but it also makes installing malware easier. Typically, an app needs to be on a devic...

7.1AI score
Exploits0
MSRC
MSRC
added 2023/12/28 8:0 a.m.44 views

Microsoft addresses App Installer abuse

28 October 2024 Update Microsoft disabled the ms-appinstaller URI scheme handler by default in App Installer on 28 December 2023 as a security response to protect customers from attackers’ evolving techniques against previous safeguards for CVE-2021-43890. Microsoft is pleased to announce that we...

7.1CVSS7.3AI score0.10295EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2021/12/15 3:15 p.m.78 views

CVE-2021-43890

We have investigated reports of a spoofing vulnerability in AppX installer that affects Microsoft Windows. Microsoft is aware of attacks that attempt to exploit this vulnerability by using specially crafted packages that include the malware family known as Emotet/Trickbot/Bazaloader. An attacker...

7.1CVSS7.5AI score0.10295EPSS
In wildExploits1References6Affected Software1
Prion
Prion
added 2021/12/15 3:15 p.m.35 views

Spoofing

We have investigated reports of a spoofing vulnerability in AppX installer that affects Microsoft Windows. Microsoft is aware of attacks that attempt to exploit this vulnerability by using specially crafted packages that include the malware family known as Emotet/Trickbot/Bazaloader. An attacker...

6CVSS6.8AI score0.10295EPSS
Exploits1References5
Microsoft CVE
Microsoft CVE
added 2021/12/14 8:0 a.m.120 views

Windows AppX Installer Spoofing Vulnerability

We have investigated reports of a spoofing vulnerability in AppX installer that affects Microsoft Windows. Microsoft is aware of attacks that attempt to exploit this vulnerability by using specially crafted packages that include the malware family known as Emotet/Trickbot/Bazaloader. An attacker...

7.1CVSS7AI score0.10295EPSS
Exploits1
Rows per page
Query Builder