Windows Vulnerabilities

Just Another Reason to Stay Away From Internet Explorer “Edge As Well”

by
System Security

Microsoft issued an emergency security advisory warning millions of Windows users of a new zero-day vulnerability in Internet Explorer (IE) browser that attackers are actively exploiting in the wild — and there is no patch yet available for it. The vulnerability, tracked as CVE-2020-0674 and rated moderated, is a remote code execution issue that exists … Read more

Windows CryptoAPI Spoofing Vulnerability Discovered: Patch Your Windows 10 OS NOW!

by

CVE-2020-0601 | Windows CryptoAPI Spoofing Vulnerability Security Vulnerability Published: 01/14/2020 | Last Updated : 01/16/2020 MITRE CVE-2020-0601 A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) certificates. An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file … Read more