Category: Microsoft|May 7, 2019 | Author: Admin

Multiple Vulnerabilities In Microsoft Server Infrastructure Allows Arbitrary Code Execution

Share on

Researchers have discovered numerous vulnerabilities in Microsoft server. These vulnerabilities, upon exploit, could threaten the integrity and confidentiality of the systems. Two of these vulnerabilities could even allow arbitrary code execution.

Researchers have discovered numerous vulnerabilities in Microsoft servers. These vulnerabilities, upon exploit, could threaten the integrity and confidentiality of the systems. Two of these vulnerabilities could even allow arbitrary code execution.

 

Vulnerabilities In Microsoft Server Infrastructure
Recently, researchers at Swascan have found multiple security vulnerabilities affecting the Microsoft server infrastructure. These vulnerabilities could lead to varying results. They have allegedly discovered several flaws, two of which could result in arbitrary code execution.

 

As stated in their blog post, the Swascan team has spotted five different security flaws.

 

Swascan identified 5 vulnerabilities related to Microsoft’s server infrastructure. If exploited, these weaknesses could have easily impacted the system’s integrity, availability, and confidentiality.

 

These include two vulnerabilities with high severity, a single medium severity flaw, and two low severity bugs.

 

Although, they haven’t explicitly disclosed the actual vulnerabilities. They have hinted about the flaws via CWE (Common Weakness Enumeration) types. As deduced from the description, the vulnerabilities predominantly include code injection and improper restrictions of operations within the bounds of memory, and information disclosure flaws. The initial two flaws could lead to arbitrary code execution.

 

Microsoft Patched The Flaws
Upon discovering the security flaws, Swascan team approached the Microsoft team to alert them of the flaws in Microsoft’s IT infrastructure. Together, they both worked to resolve the issues. Nonetheless, neither Microsoft nor the researchers disclosed the details about the existence and the technicalities of the flaws.

 

Swascan appreciated the professional handling of this matter by Microsoft experts.

 

Microsoft’s focus on our findings, along with email exchanges and evaluations were among the most serious, professional and transparent collaborations.

 

The Swascan co-founder, Pierguido Iezzi, also emphasized the importance of close collaboration between security experts and vendors.

 

Let us know your thoughts about the article in the comments section below

Sponsored Ads:

Comments:


Now Tesla can do something completely new

Category: General|Jul 4, 2022 | Author: Admin

"Google pushes users into comprehensive monitoring"

Category: Google|Jul 3, 2022 | Author: Admin

In this country, Apple must comply with the new iPhone law

Category: Apple|Jul 2, 2022 | Author: Admin

Are you tired of iPhone? Now Google makes it easy

Category: Google|Jul 1, 2022 | Author: Admin

The EU extends its 'Roam-like-at-home' mobile service rule through 2032

Category: IT|Jun 30, 2022 | Author: Admin

Apple's important iPhone project may have failed

Category: Apple|Jun 29, 2022 | Author: Admin

Dramatic Netflix message: announces they are losing two million customers

Category: General|Jun 28, 2022 | Author: Admin

This is how mobile cameras get better with a shrunken Samsung sensor

Category: IT|Jun 27, 2022 | Author: Admin

Now the PlayStation 5 screens come with 4K and 144Hz

Category: General|Jun 26, 2022 | Author: Admin

AirPods get better sound quality - much about AirPods Pro 2 revealed

Category: Apple|Jun 25, 2022 | Author: Admin

The day is here: all you have to do is launch your Playstation

Category: General|Jun 24, 2022 | Author: Admin

This card holds the record

Category: IT|Jun 23, 2022 | Author: Admin

Russians refuse to download Windows 11 and 10

Category: Microsoft|Jun 22, 2022 | Author: Admin

Tesla is banned in this city

Category: General|Jun 21, 2022 | Author: Admin

Everyone with Sonos must know the super-tricks this button can

Category: IT|Jun 20, 2022 | Author: Admin
more