June 13, 2018 04:00 pm
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/8gK9kEiAqGk/a-vulnerability-in-cortana-now-patched-allowed-attacker-to-access-a-locked-computer-change
A Vulnerability in Cortana, Now Patched, Allowed Attacker To Access a Locked Computer, Change Its Password
Catalin Cimpanu, reporting for BleepingComputer: Microsoft has patched a vulnerability in the Cortana smart assistant that could have allowed an attacker with access to a locked computer to use the smart assistant and access data on the device, execute malicious code, or even change the PC's password to access the device in its entirety. The issue was discovered by Cedric Cochin, Cyber Security Architect and Senior Principle Engineer at McAfee. Cochin privately reported the problems he discovered to Microsoft in April. The vulnerability is CVE-2018-8140, which Microsoft classified as an elevation of privilege, and patched yesterday during the company's monthly Patch Tuesday security updates. Further reading: Microsoft Explains How it Decides Whether a Vulnerability Will Be Patched Swiftly or Left For a Version Update.Read more of this story at Slashdot.
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/8gK9kEiAqGk/a-vulnerability-in-cortana-now-patched-allowed-attacker-to-access-a-locked-computer-change
Share this article:
Tweet
View Full Article
Slashdot
Slashdot was originally created in September of 1997 by Rob "CmdrTaco" Malda. Today it is owned by Geeknet, Inc..More About this Source Visit Slashdot