Security News > 2019 > January > 0patch releases micropatch for Windows Contacts RCE zero-day
2019-01-22 11:33
ACROS Security, the creators of 0patch, have released a micropatch for a recently revealed zero-day RCE flaw affecting Windows. About the vulnerability and the micropatch Security researcher John Page (aka Hyp3rlinx) published the details about the vulnerability and PoC exploit code after Microsoft failed to fix the issue within 90 days of it being reported. “The issue was initially reported as related to VCF files (which are by default associated with the Windows Contacts application) … More → The post 0patch releases micropatch for Windows Contacts RCE zero-day appeared first on Help Net Security.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/yUe7IPQjkFI/
Related news
- Windows MSHTML zero-day used in malware attacks for over a year (source)
- Void Banshee APT exploited “lingering Windows relic” in zero-day attacks (source)
- “Perfect” Windows downgrade attack turns fixed vulnerabilities into zero-days (source)
- Cisco warns of critical RCE zero-days in end of life IP phones (source)
- New Windows SmartScreen bypass exploited as zero-day since March (source)
- Zero-click Windows TCP/IP RCE impacts all systems with IPv6 enabled (source)
- Zero-click Windows TCP/IP RCE impacts all systems with IPv6 enabled, patch now (source)
- Windows driver zero-day exploited by Lazarus hackers to install rootkit (source)
- APT group exploits WPS Office for Windows RCE vulnerability (CVE-2024-7262) (source)
- Week in review: SonicWall critical firewalls flaw fixed, APT exploits WPS Office for Windows RCE (source)