CERT mailing list archives

Previous By Date Next
Previous By Thread Next

Microsoft RCE Vulnerabilities Affecting Windows, Windows Server

From: "US-CERT" <US-CERT () ncas us-cert gov>
Date: Mon, 23 Mar 2020 23:17:47 +0000
Cybersecurity and Infrastructure Security Agency Logo

National Cyber Awareness System:



Microsoft RCE Vulnerabilities Affecting Windows, Windows Server [ 
https://www.us-cert.gov/ncas/current-activity/2020/03/23/microsoft-rce-vulnerabilities-affecting-windows-windows-server 
] 03/23/2020 06:37 PM EDT 
Original release date: March 23, 2020

Microsoft has released a security advisory to address remote code execution vulnerabilities in Adobe Type Manager 
Library affecting all currently supported versions of Windows and Windows Server operating systems. A remote attacker 
can exploit these vulnerabilities to take control of an affected system. Microsoft is aware of limited, targeted 
attacks exploiting these vulnerabilities in the wild.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review Microsoft 
Advisory ADV200006 [ https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/adv200006 ] and the CERT 
Coordination Center (CERT/CC) Vulnerability Note VU#354840 [ https://kb.cert.org/vuls/id/354840/ ] for more information 
and apply the necessary mitigations until patches are made available.

This product is provided subject to this Notification [ https://www.us-cert.gov/privacy/notification ] and this Privacy 
& Use [ https://www.dhs.gov/privacy-policy ] policy.

body { font-size: 1em; font-family: Arial, Verdana, sans-serif; font-weight: normal; font-style: normal; color: 
#333333; } ________________________________________________________________________

A copy of this publication is available at www.us-cert.gov [ https://www.us-cert.gov ]. If you need help or have 
questions, please send an email to info () us-cert gov. Do not reply to this message since this email was sent from a 
notification-only address that is not monitored. To ensure you receive future US-CERT products, please add US-CERT () 
ncas us-cert gov to your address book. 

OTHER RESOURCES: Contact Us [ http://www.us-cert.gov/contact-us/ ] | Security Publications [ 
http://www.us-cert.gov/security-publications ] | Alerts and Tips [ http://www.us-cert.gov/ncas ] | Related Resources [ 
http://www.us-cert.gov/related-resources ]  

STAY CONNECTED: Sign up for email updates [ http://public.govdelivery.com/accounts/USDHSUSCERT/subscriber/new ]
Previous By Date Next
Previous By Thread Next

Current thread: