0patch Blog
Security Patching Simplified To The Extreme
Wednesday, April 24, 2024
Micropatches Released for Windows Workstation and Server Service Elevation of Privilege Vulnerability (CVE-2022-38034, CVE-2022-38045, No CVE)
›
October 2022 Windows Update brought fixes for two interesting vulnerabilities, CVE-2022-38034 and CVE-2022-38045 . They allowed a remot...
Thursday, April 4, 2024
Micropatches for Windows Local Session Manager Elevation of Privilege (CVE-2023-21771)
›
In December of 2022, Ben Barnea of Akamai posted an X thread about a bug they had found in Windows Local Service Manager (LSM) that can ...
Tuesday, April 2, 2024
Micropatches for Leaking NTLM Credentials Through Windows Themes (CVE-2024-21320)
›
January 2024 Windows Updates brought a patch for CVE-2024-21320 , a privilege escalation vulnerability in Windows. The vulnerability allow...
Friday, March 15, 2024
Micropatches Released for Microsoft Outlook "MonikerLink" Remote Code Execution Vulnerability (CVE-2024-21413)
›
In February 2024, still-Supported Microsoft Outlook versions got an official patch for CVE-2024-21413 , a vulnerability that allowed an a...
Friday, February 23, 2024
Micropatches Released for Microsoft Outlook Information Disclosure Vulnerability (CVE-2023-35636)
›
In December 2023, still-Supported Microsoft Outlook versions got an official patch for CVE-2023-35636 , a vulnerability that allowed an ...
Monday, February 19, 2024
Micropacthes For "OverLog", Remote Denial of Service Vulnerability in Windows Event Log Service (CVE-2022-37981)
›
We recently delivered patches for the "LogCrusher" vulnerability that allows an attacker to remotely crash Windows Event Log se...
Friday, February 9, 2024
Micropatches For Another Remote Windows Event Log Denial Of Service ("LogCrusher", no CVE)
›
While recently patching the (still 0day) "EventLogCrasher" vulnerability, we came across another similar vulnerability publishe...
›
Home
View web version