![]() One nifty little bug fixed in this patch batch is CVE-2018-8345. For more information about how Foreshadow works, check out their academic paper (PDF), and/or the video below. ![]() Microsoft also patched more variants of the Meltdown/Spectre memory vulnerabilities, collectively dubbed “ Foreshadow” by a team of researchers who discovered and reported the Intel-based flaws. The other zero-day is a bug ( CVE-2018-8414) in the Windows 10 shell that could allow an attacker to run code of his choice. Microsoft pushed 17 updates to fix at least 60 vulnerabilities in Windows and other software, including two “ zero-day” flaws that attackers were already exploiting before Microsoft issued patches to fix them.Īccording to security firm Ivanti, the first of the two zero-day flaws ( CVE-2018-8373) is a critical flaw in Internet Explorer that attackers could use to foist malware on IE users who browse to hacked or booby-trapped sites. ![]() ![]() Adobe plugged five security holes in its Flash Player browser plugin. Adobe and Microsoft each released security updates for their software on Tuesday.
0 Comments
Leave a Reply. |