Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Warning: Vulnerability in Windows' HTTP Protocol Stack attacks remote code execution, no authentication required
This means that information systems that have not been updated are very vulnerable to exploitation and attack.
Warning: Vulnerability in Windows' HTTP Protocol Stack attacks remote code execution, no authentication required Picture 1
Vulnerability CVE-2022-21907 in Windows' HTTP Protocol Stack (http.sys) allows attackers to execute code remotely without authentication. This vulnerability severely affects Windows Server 2019 and Windows 10 version 1809 with a CVSS score of 9.8.
To avoid the risk of being attacked, the NCSC recommends that agencies and organizations soon review and identify potentially affected Windows operating systems and update the patch immediately.
In the event that the patch is not available, the units can take an alternative remedy by 'Deleting the DWORD registry value 'EnableTrailerSupport' in HKEY_LOCAL_MACHINE/System/CurrentControlSet/Services/HTTP/Parameters'. However, this measure only applies to Windows Server 2019, Windows 10, version 1809, not Windows 20H2 or later.
In January, Microsoft released an update that patched 96 security holes. According to the NCSC, there are 11 high-impact and critical vulnerabilities that need attention. In addition to the above CVE-2022-21907 include:
- 3 security holes CVE-2022-21846, CVE-2022-21969, CVE-2022-21855 in Microsoft Exchange Server, allowing attackers to execute code remotely.
- Vulnerability CVE-2022-21857 in Active Directory allows objects to elevate privileges.
- Vulnerability CVE-2022-21840 in Microsoft Office, allows attackers to execute code remotely.
- Vulnerability CVE-2022-21911 in the .NET Framework, allowing attackers to perform denial of service attacks.
- Vulnerability CVE-2022-21836 in Windows Certificate, allowing attackers to spoof.
- Vulnerability CVE-2022-21841 in Microsoft Excel, allows attackers to execute code remotely.
- Vulnerability CVE-2022-21837 in Microsoft SharePoint Server, allows attackers to execute code remotely.
- Vulnerability CVE-2022-21842 in Microsoft Word, allows attackers to execute code remotely.
Jessica TannerYou should read it
- How HTTP works
- What is HTTP
- MQTT and HTTP: Which protocol is better in the IoT era?
- 5 ways to improve website speed with HTTP / 2
- Popular network protocols today
- Caching in HTTP
- Web14: Security issues in the HTTP protocol
- Parameters in HTTP
- Things you should know about HTTP / 2 protocol
- Message in HTTP
- Websites that use HTTP protocol will have to switch to HTTPS if they do not want to 'leak' and 'blacklist' Google
- Stack data structure (Stack)
Attack the network
Discovered new ransomware called White Rabbit, related to the notorious FIN8 hacker group- Microsoft issued a warning about macOS security errors, urging users to update the software immediately
- The Gupteba botnet that infected 1 million Windows computers has just been taken down by Google
- Dangerous malicious code, capable of self-mutating, attacking the vaccine manufacturing industry
- Detected malicious attack campaign targeting TikTok, threatening to delete accounts of many celebrities
- AMD admits that its new driver update packages for Windows are becoming a 'shooting target' of hackers
Discovered new ransomware called White Rabbit, related to the notorious FIN8 hacker group
Microsoft issued a warning about macOS security errors, urging users to update the software immediately
The Gupteba botnet that infected 1 million Windows computers has just been taken down by Google
Dangerous malicious code, capable of self-mutating, attacking the vaccine manufacturing industry
Detected malicious attack campaign targeting TikTok, threatening to delete accounts of many celebrities
AMD admits that its new driver update packages for Windows are becoming a 'shooting target' of hackers