Phone : +91 9582 90 7788 | Email : sales@itmonteur.net

Register & Request Quote | Submit Support Ticket

Home » Cyber Security News » Another Windows zero-day vulnerability revealed by Google

Another Windows zero-day vulnerability revealed by Google

  • The security vulnerability is said to affect Windows 7 systems particularly those with the 32-bit version.
  • This flaw leads to a privilege escalation in the Windows kernel driver allowing malicious components to evade security sandbox.

Right after a Chrome security flaw was fixed by Google, another vulnerability existing in Microsoft’s Windows was disclosed by the tech giant.

According to Google’s Security Blog, the vulnerability could cause privilege escalation enabling attackers to bypass security sandboxes. The vulnerability was found to be affecting Windows 7 systems only.

Worth noting

  • This Windows flaw only impacts Windows 7 32-bit systems because of the lack of exploit mitigations that are present in later versions.
  • Local privilege escalation in win32k.sys kernel results in this flaw. As a result, attack instances can evade security sandboxes.
  • Specifically, the flaw described by the blog is a ‘NULL pointer dereference in win32k!MNGetpItemFromIndex when NtUserMNDragOver() system call is called under specific circumstances.’
  • Google has reported this flaw to Microsoft, which is yet to release a patch to fix the issue.

Why this matters – The blog also mentions that the Windows flaw can be leveraged for other attacks.

The Google Security blog pointed out that, “…we are publicly disclosing its existence because it is a serious vulnerability in Windows that we know was being actively exploited in targeted attacks. The unpatched Windows vulnerability can still be used to elevate privileges or combined with another browser vulnerability to evade security sandboxes.”

Since there are no workarounds, the only suggestible mitigation is upgrading to Windows 10, and keeping it updated with security patches whenever they are available.

Information Security - InfoSec - Cyber Security - Firewall Providers Company in India

 

What is Firewall? A Firewall is a network security device that monitors and filters incoming and outgoing network traffic based on an organization's previously established security policies. At its most basic, a firewall is essentially the barrier that sits between a private internal network and the public Internet.

 

Secure your network at the gateway against threats such as intrusions, Viruses, Spyware, Worms, Trojans, Adware, Keyloggers, Malicious Mobile Code (MMC), and other dangerous applications for total protection in a convenient, affordable subscription-based service. Modern threats like web-based malware attacks, targeted attacks, application-layer attacks, and more have had a significantly negative effect on the threat landscape. In fact, more than 80% of all new malware and intrusion attempts are exploiting weaknesses in applications, as opposed to weaknesses in networking components and services. Stateful firewalls with simple packet filtering capabilities were efficient blocking unwanted applications as most applications met the port-protocol expectations. Administrators could promptly prevent an unsafe application from being accessed by users by blocking the associated ports and protocols.

 

Firewall Firm is an IT Monteur Firewall Company provides Managed Firewall Support, Firewall providers , Firewall Security Service Provider, Network Security Services, Firewall Solutions India , New Delhi - India's capital territory , Mumbai - Bombay , Kolkata - Calcutta , Chennai - Madras , Bangaluru - Bangalore , Bhubaneswar, Ahmedabad, Hyderabad, Pune, Surat, Jaipur, Firewall Service Providers in India

Sales Number : +91 9582 90 7788 | Support Number : +91-9654016484
Sales Email : sales@itmonteur.net | Support Email : support@itmonteur.net

Register & Request Quote | Submit Support Ticket