Hijacking Vulnerability Discovered in OneDrive

Microsoft cloud storage solution “OneDrive” has been found to contain a vulnerability in version 19.232.1124.0010 which could allow it to be hijacked.

Don’t Wait to Update OneDrive

Microsoft cloud storage solution, OneDrive, has been found to contain a vulnerability in version 19.232.1124.0010 which could allow it to be hijacked. We recommend upgrading OneDrive to 20.073.0409.0003 as quickly as possible.

All it takes to exploit is adding a specially crafted DLL into the %LOCALAPPDATA% directory on the PC. When OneDrive is launched, it will run the DLL and infect the system. It will have all the privileges as the users using OneDrive.

Keep Your Organization Protected

Tuearis Cyber can manage and secure vulnerabilities exposed by open ports, disabled firewalls, ineffective user account policies, and security compliance violations from remote workers as part of our Managed Security Offerings.

In this unpredictable time, detecting software vulnerabilities isn’t enough. Traditional security scanners only do half the job by identifying and tracking possible vulnerabilities and exposure without eliminating the risk. More advanced vulnerability scanning and patch management can deploy solutions quickly. We can also help you gain visibility into OS and third-party vulnerabilities while increasing cyber resilience through automated patching and security scans. Insights into the OS misconfigurations and compliance violations reduce your attack surface and increase peace of mind.

With Tuearis as your security team you can REST SECURED.