While discussing the Windows Media Foundation flaw the Redmond-based tech giant added: “There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit a malicious webpage.”
The recent Patch Tuesday release from Microsoft also addresses critical flaws with Internet Explorer, EdgeHTML, Chakra Core and SharePoint.
The SharePoint vulnerabilities are once again remote code execution (RCE) flaws that would let hackers access a system as well as read or delete content on a PC.
The latest Microsoft security update also fixes elevation-of-privilege bugs which have been rated as important, an article by ThreatPost revealed.
Among these issues are a pair of flaws that affect the vital Win32k driver for the Microsoft OS.
Once again, if an attacker managed to exploit these vulnerabilities then they would be able to install programmes, delete date as well as create new accounts.
Published at Sun, 17 May 2020 06:01:00 +0000