all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Proof of Concept for Microsoft Word RTF Font Table Heap Corruption (CVE-2023-21716) Released

Add to bookmarks

Web: https://fortiguard.fortinet.com/threat-signal-report/5046

March 15, 2023, 2:34 a.m. |

FortiGuard Labs | FortiGuard Center - Threat Signal Report fortiguard.fortinet.com

Update 3/14 - Coverage section updated with available IPS signature.FortiGuard Labs is aware of a new proof of concept released over the weekend for CVE-2023-21716 (Microsoft Word Remote Code Execution Vulnerability).Patched in the February Microsoft Monthly Security Release, CVE-2023-21716 is a vulnerability within Microsoft Office's wwlib which allows attackers to achieve remote code execution on a targeted machine via the use of a maliciously crafted RTF document. What makes this vulnerability dangerous is that It does not require any user …

concept corruption cve cve-2023-21716 microsoft microsoft word rtf word

Visit resource

More from fortiguard.fortinet.com / FortiGuard Labs | FortiGuard Center - Threat Signal Report

Critical Adobe ColdFusion Vulnerability (CVE-2023-26360) Exploited as a Zero-day 4 days, 6 hours ago | fortiguard.fortinet.com
adobe coldfusion critical cve +4
Multiple Progress Telerik UI Vulnerabilities Exploited in the Wild 4 days, 6 hours ago | fortiguard.fortinet.com
exploited progress progress telerik telerik +1
Microsoft March Patch Tuesday Release Contains Two New Zero Days and 80 Security Updates 4 days, 6 hours ago | fortiguard.fortinet.com
march microsoft patch patch tuesday +5
Proof of Concept for Microsoft Word RTF Font Table Heap Corruption (CVE-2023-21716) Released 5 days, 12 hours ago | fortiguard.fortinet.com
concept corruption cve cve-2023-21716 +4
CISA Adds CVE-2020-5741 and CVE-2021-39144 to the Known Exploited Vulnerabilities Catalog 6 days, 12 hours ago | fortiguard.fortinet.com
catalog cisa cve cve-2021-39144 +4
CISA Adds CVE-2022-28810, CVE-2022-33891 and CVE-2022-35914 to the Known Exploited Vulnerabilities Catalog 1 week, 3 days ago | fortiguard.fortinet.com
catalog cisa cve cve-2022-35914 +4
#StopRansomware: Royal Ransomware 1 week, 5 days ago | fortiguard.fortinet.com
ransomware royal royal ransomware stopransomware
New WhiteSnake Infostealer Sold in Underground 1 week, 5 days ago | fortiguard.fortinet.com
infostealer
BlackLotus Malware Bypasses UEFI Secure Boot 1 week, 5 days ago | fortiguard.fortinet.com
blacklotus boot malware secure boot +1

Latest InfoSec / Cybersecurity Jobs

View more jobs Post a job on infosec-jobs.com

Cyber Security Specialist

@ NielsenIQ | Algiers, Algeria
View on infosec-jobs.com

Chief Information Security Officer

@ Business Wire | United States
View on infosec-jobs.com

Sr. Red Team Engineer

@ Picus | Ankara, Turkey
View on infosec-jobs.com

Cyber Security Expert

@ AVIV Group | Paris, France
View on infosec-jobs.com

Security Architect

@ Eurofins | Barcelona, Poland
View on infosec-jobs.com

Engineering Manager, Cloud Security

@ Patreon | Remote
View on infosec-jobs.com

Sr. Cybersecurity Engineer - Identity and Access Management

@ Visa | Bengaluru, India
View on infosec-jobs.com

Research Engineer- Atmospheric Perils Vulnerability

@ Verisk | Boston, MA, United States
View on infosec-jobs.com

Security Engineer, SIRT

@ Amazon.com | Dublin, IRL
View on infosec-jobs.com

Sr Incident Response Analyst

@ ServiceNow | Dublin, Ireland
View on infosec-jobs.com

Security Architect

@ AVIV Group | Paris, France
View on infosec-jobs.com

Regulatory Compliance Specialist - ISMS

@ Intelerad | Remote, OR, United States
View on infosec-jobs.com