Google reveals a vulnerability in Windows and it is now exploited

Google said in a post: It has evidence of active exploits of the unfolded vulnerability, which allows attackers to execute code with advanced permissions.

The interesting thing is that the vulnerability that is being tracked using the naming CVE-2020-17087, along with another vulnerability is actively exploited in the Chrome browser.

Last week, CVE-2020-15999 leads to what is known as escaping from protection mode, in which the cybercriminal takes advantage of these two vulnerabilities to execute code in a hacked target by escaping from the browser’s safe environment, according to what (Catalin Simpano) explained from the site ZDNet Tech.

The disclosure post also adds that Microsoft will fix this vulnerability with an upcoming Tuesday patch on November 10. However, fixes for Windows 7 releases will only make it for users who have subscribed to ESU Extended Security Updates so not all users will be able to fix the problem in their Windows 7 systems. Because the vulnerability was actively exploited, the search giant team offered Microsoft seven days to correct the bug before publicly disclosing it today.

And Google has already corrected the vulnerability in Chrome browser by releasing the stable version 86.0.4240.1111 of the browser. As for the Windows vulnerability, the vulnerability lies in the Windows Kernel Encryption Driver (cng.sys), which the Project Zero team explains in detail in the post. The company has also attached a proof of concept code to show how the exploit might disrupt the system.

In addition, (Shane Huntley) – the director of the Google Threat Analysis Group, emphasized that the vulnerability was not related to any government-sponsored attack on the upcoming US elections.