all InfoSec news logo
all InfoSec news - The InfoSec & Cyber news aggregator
Sign in Sign up
all InfoSec news

A Vulnerability in Microsoft MSHTML Could Allow for Remote Code Execution

Add to bookmarks

Web: https://www.cisecurity.org/advisory/a-vulnerability-in-microsoft-mshtml-could-allow-for-remote-code-execution_2021-108

Jan. 7, 2022, 10:44 a.m. |

Center for Internet Security - Multi-State Information Sharing and Analysis Center cisecurity.org

A vulnerability has been discovered in Microsoft MSHTML, which could allow for remote code execution. MSHTML (also known as Trident) is the engine used for Internet Explorer. It is also used by Microsoft Office applications for rendering web based content. Successful exploitation of this vulnerability could result in remote code execution in the context of the affected user. Depending on the privileges associated with the user, an attacker could view, change, or delete data.

code code execution microsoft mshtml remote remote code execution vulnerability

Visit resource

More from cisecurity.org / Center for Internet Security - Multi-State Information Sharing and Analysis Center

Multiple Vulnerabilities in WatchGuard Firebox and XTM appliances Could Allow for Remote Code Execution 1 week, 5 days ago | cisecurity.org
code code execution remote remote code execution +3
A Vulnerability in Splunk Enterprise Deployment Servers Could Allow for Arbitrary Code Execution 2 weeks, 2 days ago | cisecurity.org
code code execution deployment enterprise +3
A Vulnerability in Cisco Email Security Appliance, Cisco Secure Email & Web Manager Could Allow … 2 weeks, 6 days ago | cisecurity.org
authentication authentication bypass bypass cisco +12
A Vulnerability in Citrix Application Delivery Management (Citrix ADM) Could Allow for an Unauthenticated Attacker … 3 weeks, 1 day ago | cisecurity.org
adm application application delivery citrix +4
MS-ISAC CYBERSECURITY ADVISORY - Critical Patches Issued for Microsoft Products, June 14, 2022 - PATCH: … 3 weeks, 1 day ago | cisecurity.org
2022 advisory critical cybersecurity +9
Multiple Vulnerabilities in Google Android OS Could Allow for Arbitrary Code Execution 4 weeks, 1 day ago | cisecurity.org
android code code execution google +3
A Vulnerability in Atlassian Confluence Server and Data Center Could Allow for Remote Code Execution 1 month ago | cisecurity.org
atlassian atlassian confluence code code execution +8
Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution 1 month ago | cisecurity.org
code code execution mozilla products +1
A Vulnerability in Microsoft Support Diagnostic Tool (MSDT) Could Allow for Arbitrary Code Execution 1 month ago | cisecurity.org
code code execution microsoft microsoft support diagnostic tool +4

Latest InfoSec / Cyber Security Jobs

View more jobs Post a job on infosec-jobs.com

Security Engineer

@ KAYAK | Berlin
View on infosec-jobs.com

Staff Reverse Engineer

@ Dragos, Inc. | Remote - USA
View on infosec-jobs.com

Cybersecurity Engineer

@ Sigma Defense | San Diego, California, United States
View on infosec-jobs.com

Sr Staff Engineer/Principal Engineer(Security Researcher, Security Efficacy)

@ Netskope | Bengaluru, Karnataka, India
View on infosec-jobs.com

Information Security Manager - Zurich, CH

@ Scandit | Zurich
View on infosec-jobs.com

Senior Developer C/Go (Acronis Cyber Infrastructure)

@ Acronis | Belgrade, Stari Grad, Serbia
View on infosec-jobs.com