[ad_1]
The Indian Computer Emergency Response Team under the IT ministry has issued a new warning for Windows operating system users. The medium severity warning is for users of Windows 10, Windows Server and the newly launched Windows 11 operating system. As per the warning, a vulnerability has been reported in Windows DNS server which could be exploited by an attacker to execute arbitrary code on the targeted system.
The warning further reveals that this vulnerability exists in Windows DNS server due to a flaw in the DNS Server component. A remote attacker can exploit this vulnerability by sending a specially crafted request. Successful exploitation of this vulnerability could allow the attacker to execute arbitrary code on the targeted system.
To avoid the exploitation, users should immediately install the latest update released by Microsoft. The Indian Computer Emergency Response Team’s official website has links that can guide you to the update pages for the above mentioned apps. Here are the exact versions of Windows 10, Windows Server and Windows 11 that are under risk.
- Windows 10 Version 21H2 for x64-based Systems
- Windows 10 Version 21H2 for ARM64-based Systems
- Windows 10 Version 21H2 for 32-bit Systems
- Windows 10 Version 20H2 for ARM64-based Systems
- Windows 10 Version 20H2 for 32-bit Systems
- Windows 10 Version 20H2 for x64-based Systems
- Windows 10 Version 21H1 for 32-bit Systems
- Windows 10 Version 21H1 for ARM64-based Systems
- Windows 10 Version 21H1 for x64-based Systems
- Windows 10 Version 1909 for ARM64-based Systems
- Windows 10 Version 1909 for x64-based Systems
- Windows 10 Version 1909 for 32-bit Systems
- Windows 11 for ARM64-based Systems
- Windows 11 for x64-based Systems
- Windows Server, version 20H2 (Server Core Installation)
- Windows Server 2022 Azure Edition Core Hotpatch
- Windows Server 2022 (Server Core installation)
- Windows Server 2022
Apart from this, the CERT-In has also issued a warning for users of Google Chrome browser. As per the warning, multiple vulnerabilities have been reported in Google Chrome which could allow a remote attacker to execute arbitrary code, bypass security restrictions or cause denial of service conditions on the targeted system.
FacebookTwitterLinkedin
[ad_2]
Source link
