Rewterz Threat Advisory – Microsoft Windows shell handler code execution

January 29, 2021

Severity

Medium

Analysis Summary

Microsoft Windows could allow a remote authenticated attacker to execute arbitrary code on the system, caused by a flaw in the shell handler for opening a folder in PowerShell. By persuading a victim to open a specially-crafted content, an attacker could exploit this vulnerability to execute arbitrary code in the context of the current user.

Impact

Gain Access

Affected Vendors

Microsoft

Affected Products

Microsoft Windows

Remediation

Refer to vendor advisory for the complete list of affected products and their respective patches.

Microsoft Web site

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

APT41 Abuses Google Calendar to Deploy ToughProgress Malware – Active IOCs

OneDrive Flaw Lets Web Apps Access All Your Files

SideWinder Launches Attacks on South Asia’s Government and Critical Systems

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Advisory – ICS: Schneider Electric IGSS code execution

Rewterz Threat Alert – Fake Office 365 Used for Phishing Attacks on C-Suite Targets

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.