Multiple Vulnerabilities in Microsoft Products

  • CERT Admin
  • Fri Feb 12 2021
  • Alerts

Systems Affected

Windows, Microsoft Office, Extended Security Updates (ESU), Developer Tools, Browser, System Centre, Azure, Microsoft Dynamics, and Exchange Server


Threat Level

High


Overview 

Multiple vulnerabilities have been identified in Microsoft products, Which could be exploited by an attacker to access sensitive information, bypass security restrictions, perform denial-of-service attacks, escalating privileges, perform spoofing attacks, or execute arbitrary codes on the targeted system.


Description 

Refer to the table below for more on the vulnerabilities, (Reference: CERT-IN )


Impact

  ✻ Exposing sensitive information to unauthorized parties
  ✻ Unauthorized access
  ✻ Losing control of the device
  ✻ Malware infections
  ✻ DOS attacks
  ✻ Services interruption
 

Solution/ Workarounds

✻ Apply the appropriate security patch mentioned below,
 https://msrc.microsoft.com/update-guide/en-us/releaseNote/2021-Feb
 

References

  ✻ https://msrc.microsoft.com/update-guide/en-us/releaseNote/2021-Feb
  ✻ https://www.microsoft.com/en-us/msrc?rtc=1
  ✻ https://www.cert-in.org.in/
  ✻ https://msrc.microsoft.com/update-guide/vulnerability/ADV200006
 

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.



Last updated: Fri Feb 12 2021

Audience

Tags