logo

CVE-2012-0151 - Microsoft Windows Authenticode Signature Verification Remote Code Execution Vulnerability

CVE-2012-0151

Microsoft | Windows

  • Date Added:
  • 2022-06-08
  • Due Date:
  • 2022-06-22
Vulnerability Name

Microsoft Windows Authenticode Signature Verification Remote Code Execution Vulnerability

Description

The Authenticode Signature Verification function in Microsoft Windows (WinVerifyTrust) does not properly validate the digest of a signed portable executable (PE) file, which allows user-assisted remote attackers to execute code.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions.

Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2012-0151

Free security scan for your website