Business

News

 
More...

Alerts

 
More...

Events

 
More...
 
     
 

Multiple Vulnerabilities in Microsoft Products

 

Systems Affected


Windows, Microsoft Office, Extended Security Updates (ESU), Developer Tools, Browser, System Centre, Azure, Microsoft Dynamics, and Exchange Server

Threat Level


High


Overview


Multiple vulnerabilities have been identified in Microsoft products, Which could be exploited by an attacker to access sensitive information, bypass security restrictions, perform denial-of-service attacks, escalating privileges, perform spoofing attacks, or execute arbitrary codes on the targeted system.


Description


Refer to the table below for more on the vulnerabilities, (Reference: CERT-IN )


Impact


  ✻  Exposing sensitive information to unauthorized parties
  ✻  Unauthorized access
  ✻  Losing control of the device
  ✻  Malware infections
  ✻  DOS attacks
  ✻  Services interruption


Solution/ Workarounds


  ✻  Apply the appropriate security patch mentioned below,
   https://msrc.microsoft.com/update-guide/en-us/releaseNote/2021-Feb


References


  ✻  https://msrc.microsoft.com/update-guide/en-us/releaseNote/2021-Feb
  ✻  https://www.microsoft.com/en-us/msrc?rtc=1
  ✻  https://www.cert-in.org.in/
  ✻  https://msrc.microsoft.com/update-guide/vulnerability/ADV200006


Disclaimer


The information provided herein is on "as is" basis, without warranty of any kind.


 
     

© Copyright Sri Lanka CERT|CC. All Rights Reserved.