Rewterz

Rewterz Threat Advisory – ‘BleedingTooth’ Bluetooth flaw in Linux kernel

October 15, 2020
Rewterz

Rewterz Threat Alert – LokiBot Malware – IOC’s

October 16, 2020

Rewterz Threat Advisory – CVE-2020-3991 – VMware Horizon Client for Windows

Severity

Medium

Analysis Summary

CVE-2020-3991

VMware Horizon Client for Windows contains a denial-of-service vulnerability due to a file system access control issue during install time. Successful exploitation of this issue may allow an attacker to overwrite certain admin privileged files through a symbolic link attack at install time. This will result into a denial-of-service condition on the machine where Horizon Client for Windows is installed.

Impact

Denial of service

Affected Vendors

VMware

Affected Products

Horizon Client for Windows

Remediation

Refer to vendor advisory for the complete list of affected products and their respective patches.

https://www.vmware.com/security/advisories/VMSA-2020-0022.html

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.