![]() The OLE is designed to allow sharing data and functionality between programs and it is present in almost all the components of Microsoft Office, where it can be used to edit and create data with information in multiple formats. Microsoft says that the Zero-day is not patched yet and hence it is being exploited in the wild and allows the potentials hackers to perform remote code execution.Ī zero-day security glitch pertains to the Microsoft OLE (Object Linking and Embedding) technology. US-CERT recommends users and administrators review the Microsoft Security Advisory and apply the recommended workarounds. This vulnerability could allow an attacker to take control of an affected system if a user opens a specially crafted Microsoft Office file. Microsoft has released a security advisory to provide recommended mitigations for an unpatched vulnerability, (CVE-2014-6352) which affects all Microsoft Windows releases except Windows Server 2003. The United States premier cyber watchdog, US Computer Emergency Response Team US-CERT today released a advisory for a unpatched exploit CVE-2014-6352. Microsoft has given a workaround for the mitigation of the exploitĬVE-2014-6352 : All Windows versions except Windows 2003 vulnerable to a new Sandworm exploit. ![]() CVE-2014-6352 : All Windows versions except Windows 2003 vulnerable to a new Sandworm exploit. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |