Multiple Vulnerabilities in Microsoft Products

Tags: English. Risk Level: High.

Systems Affected

Windows, Microsoft Office, Extended Security Updates (ESU), Developer Tools, Browser, System Centre, Azure, Microsoft Dynamics, and Exchange Server

Overview

Multiple vulnerabilities have been identified in Microsoft products, Which could be exploited by an attacker to access sensitive information, bypass security restrictions, perform denial-of-service attacks, escalating privileges, perform spoofing attacks, or execute arbitrary codes on the targeted system.

Description

Refer to the table below for more on the vulnerabilities, (Reference: CERT-IN )

Impact

  ✻ Exposing sensitive information to unauthorized parties
  ✻ Unauthorized access
  ✻ Losing control of the device
  ✻ Malware infections
  ✻ DOS attacks
  ✻ Services interruption

Solution/ Workarounds

  ✻ Apply the appropriate security patch mentioned below,
  https://msrc.microsoft.com/update-guide/en-us/releaseNote/2021-Feb

References

  ✻ https://msrc.microsoft.com/update-guide/en-us/releaseNote/2021-Feb
  ✻ https://www.microsoft.com/en-us/msrc?rtc=1
  ✻ https://www.cert-in.org.in/
  ✻ https://msrc.microsoft.com/update-guide/vulnerability/ADV200006

Disclaimer

The information provided herein is on “as is” basis, without warranty of any kind.