New GDI Flaws Could Enable Remote Code Execution in Windows
Flaws in Windows Graphics Device Interface (GDI) have been identified that allow remote code execution and information disclosure
Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.
Search across headline titles and summaries.
Weekly headline count for the current query.
Flaws in Windows Graphics Device Interface (GDI) have been identified that allow remote code execution and information disclosure
Attackers are actively exploiting an RCE flaw in Windows PHP-CGI implementations to target Japanese firms, deploying Cobalt Strike for persistence
CVE-2024-38173 is a medium severity RCE flaw in Microsoft Outlook, similar to CVE-2024-30103
For trusted senders, the flaw is zero-click, but requires one-click interactions for untrusted ones
No zero-day vulnerabilities to fix in this month’s Microsoft Patch Tuesday
Critical Hyper-V flaw one of 12 remote code execution vulnerabilities fixed this Patch Tuesday
The vulnerabilities put critical infrastructure organizations at risk of attacks such as remote code execution (RCE) and denial of service (DoS)
The discovered vulnerabilities could have been exploited to target almost 1000 systems