Ryan Hanson

**Nome do software vulnerável e versões afetadas** JFrog Artifactory, versões 5.x a 6.x **Descrição** O problema é causado por um processamento inseguro de modelos FreeMarker, o que pode levar à execução remota de código. Isso pode ser feito, por exemplo, modificando um arquivo .ssh/authorized keys. O problema surge porque o uso da classe DefaultObjectWrapper torna certas funções Java acessíveis a um modelo. **Recomendações** Para versões entre 5.11.8 e 6.16.0, aplique os patches disponíveis para resolver o problema. No momento, não há informações sobre medidas de mitigação adicionais para outras versões.

**Name of the Vulnerable Software and Affected Versions** Windows Server 2016 Windows 10 Microsoft Visual Studio Windows 10 Servers **Description** The issue is related to an Elevation of Privilege vulnerability in Diagnostics Hub Standard Collector, which allows file creation in arbitrary locations. This is due to insufficient access restrictions. An attacker can exploit this vulnerability by creating a specially crafted application to create files in any location on the disk. **Recommendations** For Windows Server 2016, update to a version that includes the fix for this issue. For Windows 10, update to a version that includes the fix for this issue. For Microsoft Visual Studio, update to a version that includes the fix for this issue. For Windows 10 Servers, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the Diagnostics Hub Standard Collector until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Cylance CylancePROTECT versions prior to 1470 **Description** The issue allows an unprivileged local user to obtain SYSTEM privileges. This is possible because users have Modify access to the %PROGRAMFILES%CylanceDesktoplog folder. The CyUpdate process grants users Modify access to new files created in this folder. An attacker can create a new file that is a symlink chain to a pathname of an arbitrary DLL that CyUpdate uses. **Recommendations** For versions prior to 1470, update to version 1470 or later to resolve the issue. As a temporary workaround, consider restricting access to the %PROGRAMFILES%CylanceDesktoplog folder to prevent users from creating malicious symlinks.

**Name of the Vulnerable Software and Affected Versions** Microsoft Outlook versions 2007 SP3 through 2016 **Description** The issue is related to a security feature bypass in Microsoft Office software, specifically in Microsoft Outlook, where the software improperly handles the parsing of file formats. This can be exploited by a remote attacker using a specially crafted document to bypass the Office Protected View. The bypass by itself does not allow arbitrary code execution but can be used in conjunction with another vulnerability, such as a remote code execution vulnerability, to run arbitrary code. An attacker would have to convince a user to open a specially crafted file with an affected version of Microsoft Office software to exploit the vulnerability. **Recommendations** For Microsoft Outlook versions 2007 SP3 through 2016, consider avoiding the use of Office software to open specially crafted files until a patch is available. As a temporary workaround, restrict access to the Office Protected View feature to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Microsoft Outlook versions 2007 through 2016 Microsoft Excel version 2007 SP3 **Description** The issue is caused by a buffer overflow in memory, allowing a remote attacker to execute arbitrary code or cause a denial of service (memory corruption) by using a specially crafted document or email message. An attacker who successfully exploits this vulnerability could take control of an affected system, then install programs, view, change, or delete data, or create new accounts with full user rights. Exploitation requires a user to open or preview a specially crafted email message with an affected version of Microsoft Outlook. **Recommendations** For Microsoft Outlook versions 2007 through 2016, update to a version that is not affected by this issue. For Microsoft Excel version 2007 SP3, avoid using the affected software until a patch is available. As a temporary workaround, consider avoiding the use of specially crafted documents or email messages until a patch is available.