Home » Technology » Critical bug in Windows RPC: April Patch Day information

Critical bug in Windows RPC: April Patch Day information

2 years ago Research Snipers

Experts warn about the vulnerabilities that Microsoft fixed on patch day. An update is strongly recommended, as the vulnerabilities can be exploited with little effort and without user intervention. Unauthorized persons can execute arbitrary code on their victim systems. An important addition to April Patch Day: The security update includes the fix for vulnerability CVE-2022-26809.

This is a vulnerability in Microsoft Remote Procedure Call (RPC) that is classified as critical and can be a very easy gateway for malicious code under certain circumstances. Security researchers have noted with concern this new Windows RPC vulnerability, as it could lead to widespread serious cyber-attacks once an exploit is developed. Cybercrime infographic: email remains the biggest security risk

Full administrative access is possible

When the vulnerability is exploited, all commands will be executed at the same privilege level as the RPC server, which in many cases has elevated privileges or general system privileges, allowing full administrative access to the exploited device. After Microsoft released security updates, security researchers quickly realized that this flaw could be exploited in widespread attacks, similar to the 2017 Wannacry attacks that exploited the Eternal Blue vulnerability. This wave of attacks kept the sector in a stranglehold for months.

The good news is that a specific RPC configuration may be required to be vulnerable, but that’s being analyzed in more detail. Will Dormann, a vulnerability analyst at CERT/CC, previously warned that all administrators should block port 445 at the network perimeter to prevent vulnerable servers from being exposed to the Internet. Blocking port 445 protects devices not only from external threat actors but also from potential network worms that could exploit the vulnerability. However, until security updates are installed, devices remain internally vulnerable to threats that compromise a network.

Tags: , , , , , , ,

More Stories

Windows 10 Optional Update Brings May Patch

2 days ago Yasir Zeb

Nothing Ear and Ear (a) will be arriving on April 18

2 weeks ago Research Snipers

Palmsy, a journaling app, allows users to purchase phony buddy likes

3 weeks ago RS News

Today’s Latest

vivo x100 ultra

Vivo X100 Ultra Comes With Powerful Imaging Capabilities

14 hours ago Yasir Zeb

Apple Releases Second Beta of iOS 17.5 Testing Changes For EU

20 hours ago Yasir Zeb

Netflix To Bring More Original Content Rather Than Films

2 days ago Yasir Zeb

Windows 10 Optional Update Brings May Patch

2 days ago Yasir Zeb
viral vectors

The Vital Role of Viral Vectors in Modern Medicine

7 days ago Alexia Hope

If Apple can’t solve this major challenge, it may give up on making foldable iPads

1 week ago Research Snipers

You can now create AI playlists with prompts on Spotify

1 week ago Research Snipers

Samsung is expanding its semiconductor manufacturing facility in the United States

1 week ago Research Snipers

The iPhone 16 may have included a capture button for the following two reasons

1 week ago Research Snipers
Gmail data hungry functions

In Gmail for Android, Gemini will soon be able to summarize your emails

1 week ago Research Snipers