Microsoft has just released the fixes for its traditional Patch Tuesday. Among the 11 critical vulnerabilities listed is an elevation of privilege (CVE-2021-1732) in the Windows kernel, in this case the win32kfull.sys file which controls the hardware by the operating system. “It can be used to escape the sandbox of Microsoft’s browser or Acrobat Reader on the latest versions of Windows 10. This vulnerability is of high quality and its exploitation is sophisticated”, point out researchers from DBAPPSecurity Threat Intelligence Center, who found it.
This flaw is all the more dangerous as it is actively exploited by “Bitter APT”, a group of hackers probably located in South Asia. This flaw was detected in December 2020 in one of the malware that this group was using to target Chinese people or organizations. For its part, Adobe has just published a fix for a buffer overflow (CVE-2021-21017) allowing the execution of arbitrary code in Acrobat Reader. Again, this vulnerability is actively used to infect Windows users, without further details. It is not known if the two flaws are related, but it is clear that they would complement each other perfectly.
Source : Hacker News
Source: Sécurité – 01net by www.01net.com.
*The article has been translated based on the content of Sécurité – 01net by www.01net.com. If there is any problem regarding the content, copyright, please leave a report below the article. We will try to process as quickly as possible to protect the rights of the author. Thank you very much!
*We just want readers to access information more quickly and easily with other multilingual content, instead of information only available in a certain language.
*We always respect the copyright of the content of the author and always include the original link of the source article.If the author disagrees, just leave the report below the article, the article will be edited or deleted at the request of the author. Thanks very much! Best regards!