all InfoSec news
A Vulnerability in Microsoft MSHTML Could Allow for Remote Code Execution
Jan. 7, 2022, 10:44 a.m. |
Center for Internet Security - Multi-State Information Sharing and Analysis Center www.cisecurity.org
A vulnerability has been discovered in Microsoft MSHTML, which could allow for remote code execution. MSHTML (also known as Trident) is the engine used for Internet Explorer. It is also used by Microsoft Office applications for rendering web based content. Successful exploitation of this vulnerability could result in remote code execution in the context of the affected user. Depending on the privileges associated with the user, an attacker could view, change, or delete data.
code code execution microsoft mshtml remote code execution vulnerability
More from www.cisecurity.org / Center for Internet Security - Multi-State Information Sharing and Analysis Center
Jobs in InfoSec / Cybersecurity
Product Regulatory Compliance Specialist
@ Avery Dennison | Oegstgeest, Netherlands
Cyber Security Analyst
@ FinClear | Melbourne, Australia
Senior Application Security Manager, United States-(Virtual)
@ Stanley Black & Decker | New Britain CT USA - 1000 Stanley Dr
Vice President - Information Security Management - FedRAMP
@ JPMorgan Chase & Co. | Chicago, IL, United States
Vice President, Threat Intelligence & AI
@ Arctic Wolf | Remote - Minnesota
Cybersecurity Analyst
@ Resource Management Concepts, Inc. | Dahlgren, Virginia, United States