Microsoft Products Multiple Vulnerabilities
RISK: Extremely High Risk
TYPE: Operating Systems - Windows OS
Multiple vulnerabilities have been identified in Microsoft Products, a remote attacker can exploit these vulnerabilities to perform remote code execution on the targeted system.
Note: No patch is available for these vulnerabilities as these products have been end of life.
HKCERT recommended user to upgrade end of life Microsoft Products as soon as possible, for detail please refer to the link below:
www.hkcert.org/my_url/en/blog/15083101
www.hkcert.org/my_url/en/blog/17041302
Impact
- Remote Code Execution
System / Technologies affected
Microsoft Products no longer supported by Microsoft (end-of-life (EOL))
- Version prior to Windows 7
- Version prior to Exchange 2010
- Version prior to Windows Server 2008
- IIS 6.0
Solutions
Note: No patch is available for these vulnerabilities as these products have been end of life.
HKCERT recommended user to upgrade end of life Microsoft Products as soon as possible, for detail please refer to the link below:
www.hkcert.org/my_url/en/blog/15083101
www.hkcert.org/my_url/en/blog/17041302
Vulnerability Identifier
- No CVE information is available
Source
Related Link
- https://blogs.technet.microsoft.com/msrc/2017/04/14/protecting-customers-and-evaluating-risk/
- https://www.us-cert.gov/ncas/current-activity/2017/04/15/Microsoft-Addresses-Shadow-Brokers-Exploits-0
- https://www.bleepingcomputer.com/news/security/shadow-brokers-release-new-files-revealing-windows-exploits-swift-attacks/
Share with