Rewterz Threat Alert – LokiBot Malware – IOCs
October 29, 2020Rewterz Threat Alert – Emotet – IOCs
November 2, 2020Rewterz Threat Alert – LokiBot Malware – IOCs
October 29, 2020Rewterz Threat Alert – Emotet – IOCs
November 2, 2020Severity
High
Analysis Summary
CVE-2020-17087
Microsoft Windows could allow a local authenticated attacker to gain elevated privileges on the system, caused by a pool-based buffer overflow in the Cryptography Driver (cng.sys) in the kernel. By executing a specially-crafted program, an authenticated attacker could exploit this vulnerability to execute arbitrary code with higher privileges.
Impact
Gain Privileges
Affected Vendors
Microsoft
Affected Products
- Microsoft Windows Server 2008 SP2 x32
- Microsoft Windows 7 SP1 x64
- Microsoft Windows 8.1 x32
- Microsoft Windows Server 2016
Remediation
Refer to vendor advisory for the complete list of affected products and their respective patches.
https://bugs.chromium.org/p/project-zero/issues/detail?id=2104