Navigation section
software vulnerability
-
AA20-275A: Potential for China Cyber Response to Heightened U.S.–China Tensions
Original release date: October 1, 2020 Summary This Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat actor techniques. In light of heightened tensions between the United States and...- News
- Thread
- apt china cisa critical infrastructure cyber threats cybersecurity data breach economic espionage espionage incident response intellectual property malware mitigations mitre att&ck phishing software vulnerability threat intelligence ttps us relations vulnerability
- Replies: 0
- Forum: Security Alerts
-
MS16-146 - Critical: Security Update for Microsoft Graphics Component (3204066) - Version: 1.0
Severity Rating: Critical Revision Note: V1.0 (December 13, 2016): Bulletin published. Summary: This security update resolves vulnerabilities in Microsoft Windows. The most severe of the vulnerabilities could allow remote code execution if a user either visits a specially crafted website or...- News
- Thread
- administrative code execution critical december 2016 graphics component microsoft ms16-146 patch remote code execution revision note security bulletin security risks security update software vulnerability system security update user rights vulnerability windows
- Replies: 0
- Forum: Security Alerts
-
3119884 - Inadvertently Disclosed Digital Certificates Could Allow Spoofing - Version: 1.0
Revision Note: V1.0 (November 30, 2015): Advisory published. Summary: Microsoft is aware of unconstrained digital certificates from Dell Inc. for which the private keys were inadvertently disclosed. One of these unconstrained certificates could be used to issue other certificates, impersonate...- News
- Thread
- advisory attack prevention content spoofing cybersecurity dell inc digital certificates domain impersonation man-in-the-middle microsoft phishing private keys revision note security software vulnerability spoofing supported releases tech news v1.0 windows
- Replies: 0
- Forum: Security Alerts
-
MS15-088 - Important: Unsafe Command Line Parameter Passing Could Allow Information...
Severity Rating: Important Revision Note: V1.0 (August 11, 2015): Bulletin published. Summary: This security update helps to resolve an information disclosure vulnerability in Microsoft Windows, Internet Explorer, and Microsoft Office. To exploit the vulnerability an attacker would first have to...- News
- Thread
- bug fix command line exploitation information disclosure internet explorer microsoft office ms15-088 notepad office updates patch powerpoint revision note risk mitigation security software security software vulnerability technical bulletin update vulnerability windows
- Replies: 0
- Forum: Security Alerts
-
Driving a Collectively Stronger Security Community with Microsoft Interflow
Today, Microsoft is pleased to announce the private preview of Link Removed, a security and threat information exchange platform for analysts and researchers working in cybersecurity. Interflow uses industry specifications to create an automated, machine-readable feed of threat and security...- News
- Thread
- automated systems cloud computing collaboration cost management cybersecurity cybox data exchange data feeds incident response interflow mapp microsoft network security private preview security community security software software vulnerability stix taxii threats
- Replies: 0
- Forum: Security Alerts