Rewterz Threat Advisory – CVE-2020-26950 – Mozilla Firefox MCallGetProperty opcode code execution
November 10, 2020Rewterz Threat Advisory – CVE-2020-16994 – Microsoft Azure Sphere code execution
November 11, 2020Rewterz Threat Advisory – CVE-2020-26950 – Mozilla Firefox MCallGetProperty opcode code execution
November 10, 2020Rewterz Threat Advisory – CVE-2020-16994 – Microsoft Azure Sphere code execution
November 11, 2020Severity
Medium
Analysis Summary
Microsoft Exchange Server could allow a remote attacker to execute arbitrary code on the system, caused by improper handling of objects in memory. By persuading a victim to open specially-crafted content, an attacker could exploit this vulnerability to execute arbitrary code on the system with privileges of the victim.
Impact
Remote Code Execution
Affected Vendors
Microsoft
Affected Products
Microsoft Exchange Server 2013 CU23
Remediation
Refer to Microsoft advisory for the complete list of affected products and their respective patches.
https://msrc.microsoft.com/update-guide/en-us/vulnerability/CVE-2020-17083