Windows Users Warned: A new Windows Desktop Vulnerability found.

This content originally appeared on DEV Community and was authored by manish srivastava

Desktop Window Manager’s vulnerability:

Kaspersky researchers have found a zero-day vulnerability (CVE-2021-28310) in a Microsoft Windows component called Desktop Window Manager (DWM).

They said:

"The vulnerability our advanced exploit prevention technology discovered is an elevation of privilege vulnerability. That means a program can trick Desktop Window Manager into giving it access that it shouldn’t have. In this case, the vulnerability allowed the attackers to execute arbitrary code on victims’ machines — it essentially gave them full control over the computers."

CVE-2021-28310 is an out-of-bounds (OOB) write vulnerability in dwmcore.dll, which is part of Desktop Window Manager (dwm.exe). Due to the lack of bounds checking, attackers are able to create a situation that allows them to write controlled data at a controlled offset using DirectComposition API.

How to get your pc safe:

Download this pc patch
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-28310

This content originally appeared on DEV Community and was authored by manish srivastava

Print Share Comment Cite Upload Translate Updates

APA

manish srivastava | Sciencx (2021-04-15T20:19:24+00:00) Windows Users Warned: A new Windows Desktop Vulnerability found.. Retrieved from https://www.scien.cx/2021/04/15/windows-users-warned-a-new-windows-desktop-vulnerability-found/

MLA

" » Windows Users Warned: A new Windows Desktop Vulnerability found.." manish srivastava | Sciencx - Thursday April 15, 2021, https://www.scien.cx/2021/04/15/windows-users-warned-a-new-windows-desktop-vulnerability-found/

HARVARD

manish srivastava | Sciencx Thursday April 15, 2021 » Windows Users Warned: A new Windows Desktop Vulnerability found.., viewed ,<https://www.scien.cx/2021/04/15/windows-users-warned-a-new-windows-desktop-vulnerability-found/>

VANCOUVER

manish srivastava | Sciencx - » Windows Users Warned: A new Windows Desktop Vulnerability found.. [Internet]. [Accessed ]. Available from: https://www.scien.cx/2021/04/15/windows-users-warned-a-new-windows-desktop-vulnerability-found/

CHICAGO

" » Windows Users Warned: A new Windows Desktop Vulnerability found.." manish srivastava | Sciencx - Accessed . https://www.scien.cx/2021/04/15/windows-users-warned-a-new-windows-desktop-vulnerability-found/

IEEE

" » Windows Users Warned: A new Windows Desktop Vulnerability found.." manish srivastava | Sciencx [Online]. Available: https://www.scien.cx/2021/04/15/windows-users-warned-a-new-windows-desktop-vulnerability-found/. [Accessed: ]

rf:citation

» Windows Users Warned: A new Windows Desktop Vulnerability found. | manish srivastava | Sciencx | https://www.scien.cx/2021/04/15/windows-users-warned-a-new-windows-desktop-vulnerability-found/ |

Please log in to upload a file.

There are no updates yet.
Click the Upload button above to add an update.

You must be logged in to translate posts. Please log in or register.