In addition to Weibo, there is also WeChat
Please pay attention
WeChat public account
Shulou
2025-01-31 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > IT Information >
Share
Shulou(Shulou.com)11/24 Report--
CTOnews.com, December 15, Microsoft disclosed and fixed the SPNEGO NEGOEX (CVE-2022-37958) vulnerability in its security update released in September this year. Microsoft marked the vulnerability as "critical" today after security experts discovered that it could also be used for remote code execution (RCE).
CTOnews.com learned that hackers could use the Server Message Block (SMB) or Remote Desktop Protocol (RDP) protocols to access the NEGOEX protocol on any authenticated Windows application protocol, thereby remotely executing arbitrary code. SPNEGO is also used for simple message transfer Protocol (SMTP) and Hypertext transfer Protocol (HTTP) when SPNEGO authentication is enabled.
Although Microsoft has now raised this vulnerability to "critical", it has a score of 8.1 (High) in CVSS 3.1because it is complex and requires many attempts to exploit it. Fortunately, a patch for this vulnerability was released in September this year.
Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.
Views: 0
*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.
Continue with the installation of the previous hadoop.First, install zookooper1. Decompress zookoope
"Every 5-10 years, there's a rare product, a really special, very unusual product that's the most un
© 2024 shulou.com SLNews company. All rights reserved.