Cisco AnyConnect Secure Mobility Client for Windows DLL and Executable Hijacking Vulnerabilities

Cisco AnyConnect Secure Mobility Client for Windows DLL and Executable Hijacking Vulnerabilities https://ift.tt/3xOHDmR The vulnerabilities are not dependent on one another. Exploitation of one of the vulnerabilities is not required to exploit another vulnerability. In addition, a software release that is affected by one of the vulnerabilities may not be affected by the other vulnerabilities. […]

Azure Backup: Operational backup for Azure Blobs is now generally available

Azure Backup: Operational backup for Azure Blobs is now generally available https://ift.tt/3xLiGsq Operational backup for Azure Blobs, now generally available, is a managed data protection solution that lets you protect your block blob data from various data loss scenarios like blob corruptions, blob deletions, and accidental storage account deletions. Being an operational backup solution, the backup […]

CVE-2021-26900: Privilege Escalation Via a Use After Free Vulnerability In win32k

CVE-2021-26900: Privilege Escalation Via a Use After Free Vulnerability In win32k https://ift.tt/33c9EGX In March 2021, Microsoft released a patch to correct a vulnerability in the Windows kernel. The bug could allow an attacker to execute code with escalated privileges. This vulnerability was reported to the ZDI program by security researcher JeongOh Kyea (@kkokkokye) of THEORI. […]