hexnomad · @hexnomad
70 followers · 44 posts · Server infosec.exchangeA privilege elevation bug I reported to #msrc just got fixed: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21688
Will give a few more details once people have enough time to patch, but it allows LPE from any process. #cve202321688 #patchtuesday #vulndev
#msrc #cve202321688 #patchtuesday #vulndev
hexnomad · @hexnomad
69 followers · 35 posts · Server infosec.exchangeManaged to make #msrc's Q4 Leaderboard after submitting a couple of bug reports near the end of the year!
https://msrc.microsoft.com/leaderboard
Nothing is patched, so no details yet.
Sascha Stumpler · @sasstu
71 followers · 22 posts · Server hessen.social#MSRC Security Update Guide Improvement – Representing Hotpatch Updates https://bit.ly/3vrf8Mc
Graham Gold :donor: · @cirriustech
1644 followers · 6037 posts · Server infosec.exchange
Becoming a Microsoft Security Researcher https://www.cirriustech.co.uk/blog/becoming-a-microsoft-security-researcher/ #cirriustech #SecurityResearch #MSRC
#CirriusTech #securityresearch #msrc
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
PowerPoint ‘Weakness’ Opens Door to Malicious Mouse-Over Attack - Novel hack allows an attacker to create a mouse-over in a PowerPoint file that triggers the instal... more: https://threatpost.com/powerpoint-weakness-mouse-over-attack/154589/ #microsoftsecurityresponsecenter #securityvulnerability #proofofconcepthack #powerpointexploit #vulnerabilities #mouseoverattack #hoverwithpower #proofofconcept #powerpoint #microsoft #mouseover #exploit #malware #hacks #msrc #smb
#smb #msrc #hacks #malware #exploit #mouseover #microsoft #powerpoint #proofofconcept #hoverwithpower #mouseoverattack #vulnerabilities #powerpointexploit #proofofconcepthack #securityvulnerability #microsoftsecurityresponsecenter