Rewterz Threat Advisory – Microsoft Defender code execution

January 13, 2021

Severity

High

Analysis Summary

CVE-2021-1647

Microsoft Defender could allow a local authenticated attacker to execute arbitrary code on the system, caused by improper handling of objects in memory. By using a specially-crafted content, an attacker could exploit this vulnerability to execute arbitrary code on the system with privileges of the victim.

Impact

Execute arbitrary code

Affected Vendors

Microsoft

Remediation

Refer to vendor advisory for the complete list of affected products and their respective patches.

https://msrc.microsoft.com/update-guide/en-us/vulnerability/CVE-2021-1647

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

SuperCard X Malware Exploiting NFC for Financial Fraud – Active IOCs

Zoom Remote Control Feature Exploited to Gain Access

Microsoft Entra Account Lockouts Triggered by Token Logging Error

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Alert – Fresh IOCs – Emotet

Rewterz Threat Advisory – CVE-2021-1236 – Multiple Cisco Products security bypass

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.