September’s Patch Tuesday provides a security patch for CVE-2018-8440, an elevation of privilege vulnerability that occurs when Windows incorrectly handles calls to the Advanced Local Procedure Call (ALPC) interface. This bug allows threat actors to run code with administrative privileges, install programs, or even create new accounts with full user rights. This bug’s source code has been publicly disclosed as of August 27 via Twitter and has been seen actively used in malicious campaigns as early as September 5.
REF: https://blog.trendmicro.com/trendlabs-security-intelligence/september-patch-tuesday-windows-fixes-alpc-elevation-of-privilege-remote-code-execution-vulnerabilities/
沒有留言:
張貼留言