Today's Cyber Security News – Outlook Critical Vulnerability , Microsoft Copilot, Adobe ColdFusion

Comments off | script By · 18/03/2023



Today's Cyber Security News – Outlook Critical Vulnerability , Microsoft Copilot, Adobe ColdFusion

Today's Cyber Security News - Outlook Critical Vulnerability , Microsoft Copilot, Adobe ColdFusion

— Adobe ColdFusion – CVE-2023-26360, allows an attacker to execute arbitrary code on a vulnerable server by sending a specially crafted email with an attachment that contains a malicious UNC path
https://www.cisa.gov/known-exploited-vulnerabilities-catalog

— Microsoft Outlook that could allow an attacker to steal NTLM credentials from unsuspecting users. The flaw, identified as CVE-2023-23397, occurs when an attacker sends a message with an extended MAPI property containing a UNC path to an SMB share on a threat actor-controlled server. No user interaction is required, as the exploitation occurs automatically when the email is retrieved and processed by the Outlook client.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-23397

–Microsoft Copilot – Copilot is designed to work alongside you in apps like Word, Excel, PowerPoint and Teams, using natural language queries to help you streamline your tasks and create better content.
https://blogs.microsoft.com/blog/2023/03/16/introducing-microsoft-365-copilot-your-copilot-for-work/

53GB.COM GPTSTORE CPU Yougpt Gptsio Gpt-store-Nav