Microsoft Security Response Center Blog Alerts

Improper access control in Azure File Sync allows an authorized attacker to elevate privileges locally.

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

Use after free in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network.

Improper limitation of a pathname to a restricted directory (‘path traversal’) in Azure allows an unauthorized attacker to elevate privileges over a network.

Out-of-bounds read in Web Threat Defense (WTD.sys) allows an unauthorized attacker to deny service over a network.

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.

Uncontrolled resource consumption in Windows Deployment Services allows an unauthorized attacker to deny service locally.