WARNING: Google Discloses Windows Zero-Day Bug Exploited in the Wild

Google has disclosed details of a new zero-day privilege escalation flaw in the Windows operating system that’s being actively exploited in the wild.
The elevation of privileges (EoP) vulnerability, tracked as CVE-2020-17087, concerns a buffer overflow present since at least Windows 7 in the Windows Kernel Cryptography Driver (“cng.sys”) that can be exploited for a sandbox escape.
“The bug
Read More

The post WARNING: Google Discloses Windows Zero-Day Bug Exploited in the Wild appeared first on Malware Devil.

https://malwaredevil.com/2020/11/02/warning-google-discloses-windows-zero-day-bug-exploited-in-the-wild/?utm_source=rss&utm_medium=rss&utm_campaign=warning-google-discloses-windows-zero-day-bug-exploited-in-the-wild