Security News > 2021 > January > Windows Installer zero-day vulnerability gets free micropatch
2021-01-29 08:33
A vulnerability in the Windows Installer component, which Microsoft attempted to fix several times to no avail, today received a micropatch to deny hackers the option of gaining the highest privileges on a compromised system.
Windows 10 v20H2, 32/64bit, updated with January 2021 updates.
Windows 10 v2004, 32/64bit, updated with January 2021 updates.
Windows 10 v1909, 32/64bit, updated with January 2021 updates.
Windows 7, 32/64bit, with ESU, updated with January 2021 updates.
Windows 7, 32/64bit, without ESU, updated with January 2020 updates.
News URL
Related news
- North Korean ScarCruft Exploits Windows Zero-Day to Spread RokRAT Malware (source)
- CISA Adds ScienceLogic SL1 Vulnerability to Exploited Catalog After Active Zero-Day Attack (source)
- Researchers Uncover OS Downgrade Vulnerability Targeting Microsoft Windows Kernel (source)
- Patching problems: The “return” of a Windows Themes spoofing vulnerability (source)
- New Windows Themes zero-day gets free, unofficial patches (source)
- Windows Themes zero-day bug exposes users to NTLM credential theft (source)
- Hackers target critical zero-day vulnerability in PTZ cameras (source)
- Google’s AI Tool Big Sleep Finds Zero-Day Vulnerability in SQLite Database Engine (source)
- Microsoft patches Windows zero-day exploited in attacks on Ukraine (source)
- How a Windows zero-day was exploited in the wild for months (CVE-2024-43451) (source)