all InfoSec news
Micropatches Released For "QueueJumper" Remote Code Execution in Microsoft Message Queuing (CVE-2023-21554)
Malware Analysis, News and Indicators - Latest topics malware.news
April 2023 Windows Updates brought a fix for CVE-2023-21554,
a remote code execution vulnerability in Microsoft Message Queuing
Service. The vulnerability, nicknamed "QueueJumper" was reported to Microsoft by Wayne Low of Fortinet's FortiGuard Lab and Haifei Li with Check Point Research.
The first proof-of-concept became available on April 30, when Omair from Krash Consulting published it on GitHub. Another proof-of-concept by zoemurmure became available on May 18. Both of these made it possible for us to create a micropatch …
april check check point code code execution concept cve cve-2023-21554 fix fortinet lab low message microsoft point proof-of-concept remote code remote code execution research service updates vulnerability windows windows updates