Rewterz

Rewterz Threat Advisory – CVE-2020-3118 – Attacks Targeting High Severity Router Vulnerability

October 21, 2020
Rewterz

Rewterz Threat Alert – Google Chrome Zero-day Bug Active Exploitation

October 21, 2020

Rewterz Threat Advisory – CVE-2020-16935 – Microsoft Windows Privilege Escalation Vulnerability

Severity

Medium

Analysis Summary

CVE-2020-16935

An elevation of privilege vulnerability exists when Windows improperly handles COM object creation, aka ‘Windows COM Server Elevation of Privilege Vulnerability’. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges. To exploit this vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application that could exploit the vulnerability and take control of an affected system.

Impact

  • Privilege Escalation
  • Code Execution
  • System Takeover

Affected Vendors

Microsoft

Affected Products

  • Microsoft Windows 10
  • Microsoft Windows 7
  • Microsoft Windows 8.1
  • Windows RT 8.1
  • Windows Server 2008
  • Microsoft Windows Server 2012
  • Windows Server 2016
  • Microsoft Windows Server 2019
  • Windows Server
  • version 1903 (Server Core installation)
  • version 1909 (Server Core installation)
  • version 2004 (Server Core installation)

Remediation

Updates are available. Update to latest version. 

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16935

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.