Воу воу куда так топите
Oct. 12th, 2018 10:55 pm![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
scif_yarhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8265
A remote code execution vulnerability exists in the way Microsoft Exchange software parses specially crafted email messages. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the system user. An attacker could then install programs; view, change, add, or delete data.
upd
Брифинг по безопаности - запись
https://join-noam.broadcast.skype.com/microsoft.com/3d6beef1efc449bc9de10aa165eeffcc/ru-RU/
Тема Синицин немного рассказывает про эти уязвимости
см. с 00:48:55
A remote code execution vulnerability exists in the way Microsoft Exchange software parses specially crafted email messages. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the system user. An attacker could then install programs; view, change, add, or delete data.
upd
Брифинг по безопаности - запись
https://join-noam.broadcast.skype.com/microsoft.com/3d6beef1efc449bc9de10aa165eeffcc/ru-RU/
Тема Синицин немного рассказывает про эти уязвимости
см. с 00:48:55
