Technische Ondersteuning

Wat kunnen we voor u betekenen?

 

Information regarding Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability (CVE-2022-30190) aka "Follina"

Informatie van toepassing op:

Products
Panda Adaptive Defense 360 on Aether PlatformPanda Adaptive Defense on Aether Platform
Panda Endpoint Protection on Aether PlatformPanda Endpoint Protection Plus on Aether Platform

A zero-day Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability (CVE-2022-30190), also known as "Follina", has been identified when MSDT is called using the URL protocol from a calling application such as Word. As explained in the MSRC Blog Entry, an attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. The attacker can then install programs, view, change, or delete data, or create new accounts in the context allowed by the user?s rights.

In relation to this vulnerability, Panda Endpoint Security products can detect and block these attacks conducted via this exploit as Exploit/CVE-2022-30190:



We recommend that you apply the mitigations described by Microsoft to minimize the impact of this vulnerability.

Artikelnummer- 20220602 100079 EN

Hebt u een antwoord op uw vraag kunnen vinden in dit artikel?

JA NEE

Hartelijk dank voor uw antwoord


Hoe zou u dit artikel verbeterd willen zien?




Wilt u contact opnemen met onze technische ondersteuning?

ALTIJD ONLINE OM U TE HELPEN TWITTER FORUM
ALTIJD ONLINE OM U TE HELPEN TWITTER FORUM