91ÑÇÉ«

Service Advisory

Please share the following information with your teams.

Information Security has notified a zero-day Microsoft vulnerability (CVE-2021-40444). Exploitation of this vulnerability may allow a remote attacker to take control of an affected system.

Severity level 

CVSS Score: (High) 8.8

Description 

MSHTML is a browser rendering engine that is also used by Microsoft Office documents, and the attacks are said to utilize specially-crafted documents that targeted users would have to click.

Affected Versions:  Windows OS  

Impact 

A remote attacker could exploit this vulnerability to take control of an affected system.

Resolution 

Microsoft released the Mitigations and workarounds to address this vulnerability.

Reference 

Contact:

UIT Client Services at askit@yorku.ca or 416 736 5800

 | VISIT WWW.YORKU.CA
This email was sent by: 91ÑÇÉ«, 4700 Keele Street, Toronto, Ontario M3J 1P3

This email is viewed best in Microsoft Outlook for web