39 野に咲く名無し@転載禁止 (主) 2023/09/08 01:17:58
Micropatches Released For Windows Search Remote Code Execution (CVE-2023-36884)
https://blog.0patch.com/2023/09/micropatches-released-for-windows.html
Alongside July 2023 Windows Updates, Microsoft revealed the existence of a 0day that was detected in the wild and assigned it CVE-2023-36884. Without issuing a patch, they titled their original advisory "Office and Windows HTML RCE vulnerability" as exploitation was performed using malicious Word documents, and provided workarounds that could block exploitation.