CVE-2021-31166 Archives

CISA adds 3 vulnerabilities to Known Exploited Vulnerabilities Catalog (to include Sudo, SMBv1 vulnerabilities)

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / April 7, 2022 / CVE-2017-0148, CVE-2021-31166, CVE-2021-3156, SMBv1, sudo

The Cybersecurity and Infrastructure Security Agency (CISA) has added 3 vulnerabilities to its Known Exploited Vulnerabilities Catalog, to include Sudo, SMBv1 and Microsoft HTTP Protocol Stack vulnerabilities.

CISA adds 3 vulnerabilities to Known Exploited Vulnerabilities Catalog (to include Sudo, SMBv1 vulnerabilities) Read More »

PoC exploit code released for Windows wormable RCE (CVE-2021-31166)

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / Frank Crast / May 21, 2021 / CVE-2021-31166, POC, RCE, Windows

A security researcher has published proof-of-concept (PoC) exploit code for a Windows HTTP protocol stack remote code execution (RCE) vulnerability CVE-2021-31166.

PoC exploit code released for Windows wormable RCE (CVE-2021-31166) Read More »

Microsoft May 2021 Security Updates include fixes for 4 Critical and 3 zero-day vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / Frank Crast / May 12, 2021 / .NET, CVE-2021-26419, CVE-2021-28476, CVE-2021-31166, CVE-2021-31194, HTTP Protocol Stack, Hyper-V, Microsoft, OLE Automation, Scripting Engine

Microsoft has released the May 2021 Security updates that includes patches for 55 vulnerabilities, 4 of those rated Critical. The updates also include fixes for 3 zero-day flaws.

Microsoft May 2021 Security Updates include fixes for 4 Critical and 3 zero-day vulnerabilities Read More »