Rewterz Threat Advisory – Microsoft Windows SAFER/SRP Vulnerabilities

Rewterz Threat Advisory – Microsoft Windows UAC Vulnerability

May 3, 2021

Rewterz Threat Advisory – CVE-2021-1223 – Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability

May 3, 2021

Rewterz Threat Advisory – Microsoft Windows SAFER/SRP Vulnerabilities

Severity

High

Analysis Summary

Microsoft Windows could allow a local authenticated attacker to execute arbitrary code on the system. The SAFER bypass is a new exploit that affects older versions of Windows as well. The vulnerability is caused by a SAFER/SRP bypass flaw. An attacker can exploit this vulnerability to execute arbitrary codes on the system by executing specially-crafted programs.

Impact

Remote Code Execution

Affected Vendors

Microsoft

Affected Products

Microsoft Windows 7 SP1 x32
Microsoft Windows 7 SP1 x64
Microsoft Windows Server 2008 R2

Remediation

Refer to Microsoft for patches and mitigation techniques at

https://www.microsoft.com/en-us

Rewterz Threat Advisory – Microsoft Windows UAC Vulnerability

Rewterz Threat Advisory – CVE-2021-1223 – Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability

Rewterz Threat Advisory – Microsoft Windows SAFER/SRP Vulnerabilities

Severity

Analysis Summary

Impact

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan