Analysis of Microsoft CVE 2022 21907

Source provenance. Raw material catalogued for the wiki ingest pipeline. Lives offline at raw_sources/windows-exploit-research/Analysis of Microsoft CVE-2022-21907.md.

Status: integrated Integrated into: CVE-2022-21907

Excerpt

On January 11 ^th, 2022 Microsoft released a patch for CVE-2022-21907 as part of Microsoft’s Patch Tuesday. CVE-2022-21907 attracted special attentions from industry insiders due to the claim that the vulnerability is worm-able. In this analysis we will look at the cause of the vulnerability and how attackers can exploit it. Affected Platforms: Windows Server 2022, Windows Server 201…