Get a Pentest and security assessment of your IT network.

Cyber Security

20-Year-Old Bug in Legacy Microsoft Code Plagues All Windows Users

A 20-year-old bug in Microsoft Windows could allow a non-privileged user to run code that will give him or her full SYSTEM privileges on a target machine. The bug resides in a legacy, omnipresent protocol named Microsoft CTF. CTF is problematic because it communicates with other Windows services without proper authentication. An attacker could connect to another user s active session and take over any application, or wait for an administrator to login and compromise their session, Google Project Zero’s Tavis Ormandy said.

Source: https://threatpost.com/20-year-old-bug-legacy-microsoft-windows-users/147336/

Related posts
Cyber Security

Zip Codes & PII: Are They Personal Data?

Cyber Security

Zero-Day Vulnerabilities: User Defence Guide

Cyber Security

Zero Knowledge Voting with Trusted Server

Cyber Security

ZeroNet: 51% Attack Risks & Mitigation