Rewterz Threat Advisory – CVE-2020-1578 – Microsoft kernel information disclosure

August 12, 2020

Severity

Medium

Analysis Summary

An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass. An attacker who successfully exploited the vulnerability could retrieve the memory address of a kernel object.

Impact

Information disclosure

Affected Vendors

Microsoft

Remediation

Refer to Microsoft advisory for the complete list of affected products and for respective patches.

https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-1578

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

SideWinder APT Group aka Rattlesnake – Active IOCs

Microsoft Bookings Vulnerability Allowed Attackers to Modify Meeting Details

ClickFix Scheme Used by Russian Hackers to Deploy Espionage Malware – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Advisory – CVE-2020-1046 – Microsoft Windows code execution

Rewterz Threat Advisory – Two Zero Days actively Exploited of Microsoft Vulnerabilities

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.