mozilla

Multiple Vulnerabilities in Mozilla Firefox Could Allow for Arbitrary Code Execution

A vulnerability has been discovered in Mozilla Firefox and Firefox Extended Support Release (ESR) products which could allow for arbitrary code execution. Successful exploitation of this vulnerability could allow for arbitrary code execution in the context of the logged-on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

Related CVEs: CVE-2023-23597, CVE-2023-23598, CVE-2023-23605, CVE-2023-23606

Affected Systems: Mozilla Firefox versions prior to 109 and Firefox ESSR versions prior to 102.7.

Remediation Recommendations: Apply the latest patches for each impacted system and the Principle of Least Privilege to all systems.

Microsoft3

 

Critical Patches for Microsoft Products

Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution in the context of the logged-on user. Two zero-day vulnerabilities addressed in this advisory were reported by Microsoft, one of which is currently being exploited in the wild. The first zero day is CVE-2023-21674 - Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability which is a Sandbox escape vulnerability that can lead to the elevation of privileges, and is currently being exploited in the wild. The second zero-day is CVE-2023-21549 - Windows SMB Witness Service Elevation of Privilege Vulnerability and if exploited the attacker could execute RPC functions that are restricted to privileged accounts only.

Find a full list of affected systems and related vulnerabilities here.

 

 

adobe2

 

Vulnerabilities in Adobe Products

Multiple vulnerabilities have been discovered in Adobe products which could allow for arbitrary code execution. Successful exploitation of these vulnerabilities could allow for arbitrary code execution in the context of the logged-on user.

Affected Systems:

· Adobe Acrobat DC, Continuous, 22.003.20282 (Win), 22.003.20281 (Mac) and earlier versions

· Acrobat Reader DC, Continuous, 22.003.20282 (Win), 22.003.20281 (Mac) and earlier versions

· Acrobat 2020, Classic 2020, 20.005.30418 and earlier versions

· Acrobat Reader 2020, Classic 2020, 20.005.30418 and earlier versions

· Adobe InDesign ID17.4, ID18.0 and earlier versions

chrome

 

Vulnerabilities in Google Chrome

Multiple vulnerabilities have been discovered in Google Chrome which could allow for arbitrary code execution. Successful exploitation of these vulnerabilities could allow for arbitrary code execution in the context of the logged-on user.

Related CVEs:

· CVE-2023-0128 thru CVE-2023-0133

· CVE-2023-0135 thru CVE-2023-0141

Affected Systems:

· Google Chrome versions prior to 109.0.5414.74/.75 for Windows

· Google Chrome versions prior to 109.0.5414.87 for Mac

· Google Chrome versions prior to 109.0.5414.74 for Linux

 

Sharewith your team

Phishing Campaign Impersonates DHL

Armorblox describes a phishing campaign that’s using phony shipping invoices that purport to come from DHL. The campaign targeted an organization in the education sector with more than 100,000 emails: The phish hook in the email is contained in an Excel document which, when opened, will display a blurred-out preview of an invoice. The user will be asked to enter their Microsoft account login credentials in order to view the invoice.