Microsoft’s November 2020 Patch Tuesday saw 112 total fixes released for vulnerable Microsoft products. Out of the 112 patches released yesterday, 17 were listed as critical along with a zero-day vulnerability that was actively attacked in the wild. The zero-day revealed by Google last week after being seen in targeted attacks is currently being tracked as CVE-2020-17087 and lies within the Windows Kernel Cryptography Driver (cng.sys). Google stated, “The bug resides in the cng!CfgAdtpFormatPropertyBlock function and is caused by a 16-bit integer truncation issue.
Watch the Video
How does Binary Defense help protect your organization? With best in breed cybersecurity tactics, techniques, and services, we make sure that your environment is secure against the most advanced attacks.