Your Web News in One Place

Help Webnuz

Referal links:

Sign up for GreenGeeks web hosting
April 15, 2021 08:19 pm GMT

Windows Users Warned: A new Windows Desktop Vulnerability found.

Desktop Window Managers vulnerability:

Kaspersky researchers have found a zero-day vulnerability (CVE-2021-28310) in a Microsoft Windows component called Desktop Window Manager (DWM).

They said:

"The vulnerability our advanced exploit prevention technology discovered is an elevation of privilege vulnerability. That means a program can trick Desktop Window Manager into giving it access that it shouldnt have. In this case, the vulnerability allowed the attackers to execute arbitrary code on victims machines it essentially gave them full control over the computers."

CVE-2021-28310 is an out-of-bounds (OOB) write vulnerability in dwmcore.dll, which is part of Desktop Window Manager (dwm.exe). Due to the lack of bounds checking, attackers are able to create a situation that allows them to write controlled data at a controlled offset using DirectComposition API.

How to get your pc safe:

Download this pc patch
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-28310


Original Link: https://dev.to/manishfoodtechs/windows-users-warned-a-new-windows-desktop-vulnerability-found-2g3d

Share this article:    Share on Facebook
View Full Article

Dev To

An online community for sharing and discovering great ideas, having debates, and making friends

More About this Source Visit Dev To