Microsoft (CVE-2016-0189) and Adobe (CVE-2016-4117) Zero day

Recent zero days discovered in Microsoft scripting engine and Adobe Flash player are being exploited in the wild.
The Microsoft JScript and VBScript engines, as used in Internet Explorer 9 through 11 and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability" (CVE-2016-0189)
Adobe Flash Player and earlier allows remote attackers to execute arbitrary code via unspecified vectors.(CVE-2016-4117)
If you haven't patch your Security Devices, it is time to patch to prevent from these.

Source : Dell SonicWall Security Center

Have a good time.
(Be knowledgeable, pass it on then)

Post a Comment