SecurityWeek

No Patch for New PhantomRPC Privilege Escalation Technique in Windows

The PhantomRPC Windows vulnerability allows attackers to elevate their privileges to System by using a fake RPC server.
Security Boulevard

Microsoft won’t patch PhantomRPC: Feature or bug?

A researcher has detailed five ways to exploit PhantomRPC, which Microsoft rates “moderate” and does not plan to fix.
Bleeping Computer

Critical Windows RPC CVE-2022-26809 flaw raises concerns — Patch now

Microsoft has fixed a new Windows RPC CVE-2022-26809 vulnerability that is raising concerns among security researchers due to its potential for widespread, significant cyberattacks once an exploit is ...
CSOonline

Why you should patch the latest critical Windows RPC vulnerability right now

CVE-2022-26809 can allow attackers to compromise networks without user intervention, making it the most dangerous vulnerability fixed by Microsoft's April 12 Patch Tuesday update. Among the over 100 ...
Dark Reading

Unpatched 'PhantomRPC' Flaw in Windows Enables Privilege Escalation

A researcher discovered five different exploit paths that stem from an architectural weakness in Windows' Remote Procedure ...
Bleeping Computer

Microsoft now forces secure RPC to block Windows Zerologon attacks

Microsoft has enabled enforcement mode for updates addressing the Windows Zerologon vulnerability on all devices that installed this month's Patch Tuesday security updates. Zerologon is a critical ...
TechNewsWorld

Microsoft Issues RPC Warnings, Updates

Microsoft’s disclosure of three new security holes in Windows came just moments before its senior security strategist, Phil Reitinger, told lawmakers on the House Government Reform technology ...