Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2024-29066: Windows Distributed File System (DFS) Remote Code Execution Vulnerability

How could an attacker exploit this vulnerability?

An attacker could exploit a DFS namespace (non-default) out-of-bound write vulnerability that results in heap corruption, which could then be used to perform arbitrary code execution on the server’s dfssvc.exe process which runs as SYSTEM user.

Microsoft Security Response Center
#vulnerability#windows#rce#Windows Distributed File System (DFS)#Security Vulnerability

Microsoft Security Response Center: Latest News

CVE-2024-11395: Chromium: CVE-2024-11395 Type Confusion in V8