hessen.social

0 Beiträge0 Beteiligte0 Beiträge heute

Sass, DavidIs <a href="https://infosec.exchange/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Microsoft</a> <a href="https://infosec.exchange/tags/Defender" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Defender</a> for <a href="https://infosec.exchange/tags/Identity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Identity</a> part of the <a href="https://infosec.exchange/tags/MSRC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MSRC</a> <a href="https://infosec.exchange/tags/Bounty" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Bounty</a> program? Asking for a fried.

Not SimonMicrosoft Security Response Center (MSRC) indicated that they will adopt the Common Weakness Enumeration (CWE) industry standard when identifying a root causeof security vulnerabilities in Microsoft products and services. 🔗 <a href="https://msrc.microsoft.com/blog/2024/04/toward-greater-transparency-adopting-the-cwe-standard-for-microsoft-cves/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://msrc.microsoft.com/blog/2024/04/toward-greater-transparency-adopting-the-cwe-standard-for-microsoft-cves/</a><a href="https://infosec.exchange/tags/CWE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CWE</a> <a href="https://infosec.exchange/tags/vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vulnerability</a> <a href="https://infosec.exchange/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Microsoft</a> <a href="https://infosec.exchange/tags/MSRC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MSRC</a>

Not SimonHappy Patch Tuesday from Microsoft: 155 vulnerabilities. EDIT: 1 vulnerability was updated to say Exploited and Publicly Disclosed: <a href="https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26234" rel="nofollow noopener noreferrer" target="_blank">CVE-2024-26234</a> (6.7 medium) THIS IS AN EXPLOITED ZERO-DAY! See Sophos article for information on a malicious executable signed by a valid Microsoft Hardware Publisher Certificate: <a href="https://news.sophos.com/en-us/2024/04/09/smoke-and-screen-mirrors-a-strange-signed-backdoor/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://news.sophos.com/en-us/2024/04/09/smoke-and-screen-mirrors-a-strange-signed-backdoor/</a><blockquote>Updated CVE to correct exploit status. This is an informational update only.</blockquote>cc: <a href="https://mastodon.social/@campuscodi" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@campuscodi</a> <a href="https://infosec.exchange/@briankrebs" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@briankrebs</a> <a href="https://infosec.exchange/@todb" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@todb</a> <a href="https://mastodon.social/@serghei" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@serghei</a> <a href="https://infosec.exchange/tags/PatchTuesday" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PatchTuesday</a> <a href="https://infosec.exchange/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Microsoft</a> <a href="https://infosec.exchange/tags/MSRC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MSRC</a> <a href="https://infosec.exchange/tags/Vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Vulnerability</a> <a href="https://infosec.exchange/tags/CVE_2024_26234" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CVE_2024_26234</a> <a href="https://infosec.exchange/tags/eitw" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#eitw</a> <a href="https://infosec.exchange/tags/activeexploitation" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#activeexploitation</a>

Not SimonHere is the proof of concept for CVE-2024-28916: 🔗 <a href="https://github.com/Wh04m1001/GamingServiceEoP" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://github.com/Wh04m1001/GamingServiceEoP</a><blockquote>Exploit for arbitrary folder move in GamingService component of Xbox. GamingService is not default service. If service is installed on system it allows low privilege users to escalate to system.During the process of changing directory the Gaming Services service will try to open C:\XboxGames\GameSave\Content\MicrosoftGame.Config file, if the file exists the gaming service will try to move whole C:\XboxGames\GameSave folder. It does that by calling MoveFileW API call while impersonating calling user.If gaming service fails to move folder due to access denied error it will revert impersonation and perform the move operation as system. As the C:\XboxGames folder gives modify permissions to authenticated users group (even if it does not the user can change it to directory that is fully controlled by that user) user can delete c:\xboxgames folder, create new one, drop arbitrary dll inside C:\XboxGames\GameSave folder and add deny delete ACL for itself so that move operation fails while impersonating user.</blockquote><a href="https://infosec.exchange/tags/CVE_2024_28916" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CVE_2024_28916</a> <a href="https://infosec.exchange/tags/MSRC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MSRC</a> <a href="https://infosec.exchange/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Microsoft</a> <a href="https://infosec.exchange/tags/xbox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#xbox</a> <a href="https://infosec.exchange/tags/vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vulnerability</a> <a href="https://infosec.exchange/tags/proofofconcept" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#proofofconcept</a>

Not SimonWho expected an Xbox Gaming Services Elevation of Privilege Vulnerability to be a Zero Day?! Microsoft Security Response Center (MSRC) published CVE-2024-28916 (8.8 high), marked as Publicly Disclosed. "An attacker who successfully exploited this vulnerability could gain SYSTEM privileges." Proof-of-concept exploit code is available. This must have been serious enough to release an update and advisory outside of Patch Tuesday. 🔗 <a href="https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2024-28916" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2024-28916</a>cc: <a href="https://mastodon.social/@campuscodi" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@campuscodi</a> <a href="https://infosec.exchange/tags/CVE_2024_28916" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CVE_2024_28916</a> <a href="https://infosec.exchange/tags/MSRC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MSRC</a> <a href="https://infosec.exchange/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Microsoft</a> <a href="https://infosec.exchange/tags/xbox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#xbox</a> <a href="https://infosec.exchange/tags/vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vulnerability</a> <a href="https://infosec.exchange/tags/proofofconcept" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#proofofconcept</a>

Not SimonMSRC (Microsoft) released 11 Chromium-related security advisories. The ones not already included in Google's original post are as follows:<ul><li><a href="https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2024-21423" rel="nofollow noopener noreferrer" target="_blank">CVE-2024-21423</a> (4.8 medium) Microsoft Edge (Chromium-based) Information Disclosure Vulnerability</li><li><a href="https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2024-26188" rel="nofollow noopener noreferrer" target="_blank">CVE-2024-26188</a> (4.3 medium) Microsoft Edge (Chromium-based) Spoofing Vulnerability </li><li><a href="https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2024-26192" rel="nofollow noopener noreferrer" target="_blank">CVE-2024-26192</a> (8.2 high) Microsoft Edge (Chromium-based) Information Disclosure Vulnerability</li></ul>The Frequently Asked Questions (FAQ) section of each vulnerability explains a lot more than <a href="https://chromereleases.googleblog.com/2024/02/stable-channel-update-for-desktop_20.html" rel="nofollow noopener noreferrer" target="_blank">Google</a> normally would. Also provides a CVSSv3 score. These are noted as Not Publicly Disclosed, Not Exploited, and Exploitation Less Likely (CVE-2024-26192 is missing an exploitability assessment).<a href="https://infosec.exchange/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Microsoft</a> <a href="https://infosec.exchange/tags/MSRC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MSRC</a> <a href="https://infosec.exchange/tags/securityadvisory" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#securityadvisory</a> <a href="https://infosec.exchange/tags/vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vulnerability</a> <a href="https://infosec.exchange/tags/Chrome" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Chrome</a> <a href="https://infosec.exchange/tags/Chromium" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Chromium</a>

Not SimonHappy Patch Tuesday to those who celebrate: Microsoft, 59 vulnerabilities, 3 zero-days:<ul><li>CVE-2023-36025 Windows SmartScreen Security Feature Bypass Vulnerability</li><li>CVE-2023-36033 Windows DWM Core Library Elevation of Privilege Vulnerability (publicly disclosed too)</li><li>CVE-2023-36036 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability</li></ul><a href="https://infosec.exchange/tags/CVE202336025" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CVE202336025</a> <a href="https://infosec.exchange/tags/CVE202336033" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CVE202336033</a> <a href="https://infosec.exchange/tags/CVE202336036" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CVE202336036</a> <a href="https://infosec.exchange/tags/PatchTuesday" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PatchTuesday</a> <a href="https://infosec.exchange/tags/vulnerabilities" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vulnerabilities</a> <a href="https://infosec.exchange/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Microsoft</a> <a href="https://infosec.exchange/tags/MSRC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MSRC</a> cc: <a href="https://noc.social/@AAKL" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@AAKL</a> <a href="https://infosec.exchange/@avoidthehack" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@avoidthehack</a> <a href="https://infosec.exchange/@todb" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@todb</a>

Sascha Stumpler<a href="https://hessen.social/tags/MSRC" class="mention hashtag" rel="tag">#MSRC</a> Security Update Guide Improvement – Representing Hotpatch Updates <a href="https://bit.ly/3vrf8Mc" target="_blank" rel="nofollow noopener noreferrer" translate="no">https://bit.ly/3vrf8Mc</a>

Frühere Suchanfragen

Suchoptionen

Verwaltet von:

Serverstatistik:

#msrc