all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Wormable Windows HTTP hole – what you need to know

Add to bookmarks
Jan. 12, 2022, 7:24 p.m. | Paul Ducklin

Naked Security nakedsecurity.sophos.com

One bug in the January 2022 Patch Tuesday list is getting lots of attention: "HTTP Protocol Stack Remote Code Execution Vulnerability".

cve-2022-21907 http http.sys iis microsoft patch tuesday vulnerability windows worm wormable

Visit resource

More from nakedsecurity.sophos.com / Naked Security

Update on Naked Security 6 months, 4 weeks ago | nakedsecurity.sophos.com
intelligence location naked platform +4
Mom’s Meals issues “Notice of Data Event”: What to know and what to do 7 months, 3 weeks ago | nakedsecurity.sophos.com
advice data data breach data loss +10
Using WinRAR? Be sure to patch against these code execution bugs… 7 months, 4 weeks ago | nakedsecurity.sophos.com
application bugs code code execution +3
Smart light bulbs could give away your password secrets 8 months ago | nakedsecurity.sophos.com
care cryptography integrity isn +8
“Snakes in airplane mode” – what if your phone says it’s offline but isn’t? 8 months ago | nakedsecurity.sophos.com
airplane airplane mode data leakage data loss +6
FBI warns about scams that lure you in as a mobile beta-tester 8 months ago | nakedsecurity.sophos.com
app apps beta don +11
“Grab hold and give it a wiggle” – ATM card skimming is still a thing 8 months, 1 week ago | nakedsecurity.sophos.com
atm card chip criminals +9
Crimeware server used by NetWalker ransomware seized and shut down 8 months, 1 week ago | nakedsecurity.sophos.com
back bust crimeware doj +8
Microsoft Patch Tuesday: 74 CVEs plus 2 “Exploit Detected” advisories 8 months, 1 week ago | nakedsecurity.sophos.com
cves exploit exploitation fix +8

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Penetration Tester

@ Resillion | Bengaluru, India
View on infosec-jobs.com

Senior Backend Software Engineer (Java) - Privacy Engineering (Open to remote across ANZ)

@ Canva | Sydney, Australia
View on infosec-jobs.com

(Senior) Information Security Professional (w/m/d)

@ IONOS | Deutschland - Remote
View on infosec-jobs.com

Information Security (Incident Response) Intern

@ Eurofins | Katowice, Poland
View on infosec-jobs.com

Game Penetration Tester

@ Magic Media | Belgrade, Vojvodina, Serbia - Remote
View on infosec-jobs.com
View more jobs