August Patch Tuesday includes fixes for our internal finds in RDP, including RCE and remote info disclosure, and affecting Win 10 latest. The team successfully built a full exploit chain using some of these, so it's likely someone else will as well. Patch and enable NLA.https://twitter.com/msftsecresponse/status/1161331421895512064 …
-
-
Found when trying to hardening RDP for BlueKeep?
-
The team had actually begun an audit of RDP before BlueKeep came in, but I believe these bugs were found after BK was reported to MSRC.
- Još 1 odgovor
Novi razgovor -
-
-
How were they found ? Code review ? Fuzzing ? Static analysis ? Magical incantations ? Dice roll ?
-
Fuzzing leveraging quasi-prime Time AI technology.
- Još 1 odgovor
Novi razgovor -
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.