On Tuesday, 14 March, Redmond Wash’s Microsoft released updates to crush over 74 security bugs in its Windows operating systems and software and called special courtesy to CEV-2023-23397.
Furthermore, CEV-2023-23397 Outlook susceptibility marks all versions of Microsoft Outlook from 2013 to the newest version. However, Microsoft alleged it had seen a sign that attackers were manipulating this flaw which can be done without any user collaboration with the email server. Before it is seen in the PreviewPane.
Even though Kevin Breen, the director of cyber threat research at Immersive Labs, states CEV-2023-23397 is considered an Elevation of Privilege susceptibility, that tag does not correctly reflect its cruelty.
This is known as an NTLM relay, but it lets an invader get someone’s NTML hash (Windows account password) and use it in a bout usually known as (Pass the Hash).
However, Kevin Breen said the susceptibility effects let the attacker verify as a reliable individual without knowing the person’s password. This is on par with an attacker having a legal password with access to an organization’s systems.
Security organization Rapid7 points out that this bug marks self-hosted versions of Outlook like Microsoft 365 Apps for Enterprise. But Microsoft-hosted online services like Microsoft 365 are not susceptible.
The other zero-day error actively oppressed in the wild CEV-2023-24800 is a (Security Feature Bypass) in Windows SmartScreen, part of Microsoft’s account of endpoint protection gears.
Patch organization vendor Action1 notes that the exploit for this bug is short in complication and needs no distinct privileges. But it does need some user collaboration and can’t be used to gain access to cloistered info or rights.
However, the flaw can let another nasty code run without being noticed by SmartScreen status checks. Dustin Childs, head of hazard awareness at Trend Micro’s Zero Day Initiative, said CVE-2023-24800 lets attackers make files that dodge Mark of the Web (MOTW) defenses.
Protective measures like SmartScreen and Protected View in Microsoft Office depend on MOTW. Consequently, avoiding these makes it easier for dangerous actors to blow out malware via created documents and other infested files that SmartScreen would else stopover.
This week Microsoft patched seven other susceptibilities that made their most awful dangerous severity tag meaning. The updates report security holes that could be subjugated to give an invader full remote control over a Windows host with slight or no collaboration from the user.
So, remember to back up your data before applying any updates.
- Microsoft Reveals New Virtual Machines Using NVIDIA H100 GPUs to Accelerate AI
- Microsoft Word Finally Bring a Useful Shortcut Key to Paste Plain Text
- Microsoft Word Offers Keyboard Shortcuts for Zooming
- Microsoft will release ChatGPT 4 with AI videos Mid-March