New vulnerability in Windows: Windows MSHTML (CVE-2021-40444)

“Last Tuesday, Microsoft disclosed a new zero-day vulnerability in Windows MSHTML (CVE-2021-40444) that allows threat actors to create malicious documents, including Office and RTF docs, to execute commands on a victim’s computer remotely..

Even though there are no security updates available for the CVE-2021-40444 vulnerability, as it was discovered used in active attacks by EXPMON and Mandiant, Microsoft decided to disclose the vulnerability and provide mitigations to help prevent its exploitation.

These mitigations work by blocking ActiveX controls and Word/RTF document previews in Windows Explorer.”

Links

Leave a Reply