SmartScreen bypass, IE/LNK code-exec, OLE mitigation bypass in Office, DWM LPE, and a Remote Desktop Services escalation to SYSTEM. Google’s Threat Intelligence Group credited on several, suggesting overlap with spyware/nation-state work.
← Findings
Six actively exploited Microsoft bugs in one Patch Tuesday
SmartScreen bypass, IE/LNK code-exec, OLE mitigation bypass in Office, DWM LPE, and a Remote Desktop Services escalation to SYSTEM.