Remote Code Execution Vulnerability CVE-2021-40444

About CVE-2021-40444

Microsoft is investigating reports of a remote code execution vulnerability in MSHTML that affects Microsoft Windows. Microsoft is aware of targeted attacks that attempt to exploit this vulnerability by using specially-crafted Microsoft Office documents. An attacker could craft a malicious ActiveX control to be used by a Microsoft Office document that hosts the browser rendering engine. The attacker would then have to convince the user to open the malicious document. For more information about the CVE read here.

Cyray’s customers are already monitored for this CVE 24 hours after it was published. We released the package for everyone to help keep your organization safe.

Cyray’s Monitoring Package

For downloading the package click the download button.

For more useful Content, Packages and Use cases visit our Blog and subscribe to our newsletter.

Author

idoh

You Might Also Like

Rules based on aggregate SUM

Rules based on aggregate SUM

We should pay attention to each and every nested group that is a member of our sensitive groups, to ensure that we will know about every user that inherits these kinds of permissions.

CVE-2020-16898 – Bad Neighbor – Monitoring By SIEM

CVE-2020-16898 – Bad Neighbor – Monitoring By SIEM

We should pay attention to each and every nested group that is a member of our sensitive groups, to ensure that we will know about every user that inherits these kinds of permissions.

How to use a Grid Field

How to use a Grid Field

How to use a grid field In this post, our SOAR expert, Mr.Ben Aviv, will demonstrate how to use a grid field in XSOAR (Demisto).

Newsletter

Sign up for our newsletter and stay up to date
on all the innovations, developments and articles