Προειδοποίηση από την Microsoft: To Patch Tuesday Ιανουαρίου που κυκλοφόρησε χθες συμπεριλαμβάνει μια ενημέρωση για ένα ελάττωμα που επιτρέπει implementation remote code in Windows 10 version 1803.
Microsoft says you should update your systems immediately.
The security update is available in the cumulative update for Windows 10 KB4480966, which is only available for version 1803 (April 2018 Update), which is the only version of Windows affected by the vulnerability.
The vulnerability is described in detail by Microsoft in CVE-2019-0547 where the company states that so far no exploit is released.
"There is a vulnerability μνήμη(memory corruption) in the Windows DHCP client when an attacker sends specially crafted DHCP responses to a client. An attacker who can exploit the vulnerability could execute arbitrary code on the system.”
MSRC team Nate Warfield says the bug was found internally and no PoC will be released. However, it is recommended that you install the update as soon as possible.
___________________________