Interviews

What’s new with your favorite virtualization companies and executives.

Events

Check out what’s happening in your area, from webinars to lunch and learns.

Blogs

Get the scoop on the latest technology news from industry experts.

How To’s

Step by step instructions on a variety of need to know virtualization topics.

News

Take a look at the industries most recent company and product annoucements.


Home » Blogs

It’s 2017 and Hyper-V can be pwned by a guest app, Windows by a search query, Office by…

Submitted by on August 10, 2017 – 11:02 amNo Comment

Microsoft has released the August edition of its Patch Tuesday update to address security holes in multiple products. Folks are urged to install the fixes as soon as possible before they are exploited. Among the flaws are remote code execution holes in Windows, Internet Explorer/Edge and Flash Player, plus a guest escape in Hyper-V. Of the 48 patches issued by Redmond, 25 are rated as critical security risks.

Those 25 critical issues include a remote code execution vulnerability for all supported versions of Windows (CVE-2017-8620) for which an exploit is already public, we’re told. That flaw allows an attacker to take over a target machine on the network via a malicious Windows Search or SMB query.

To read the entire article, please click on this link https://www.theregister.co.uk/2017/08/08/august_patch_tuesday/