Microsoft has shared mitigation measures to block attacks exploiting a newly discovered Microsoft Office zero-day flaw abused in the wild to execute malicious code remotely.
The bug, described by Redmond as a Microsoft Windows Support Diagnostic Tool (MSDT) remote code execution vulnerability and tracked as CVE-2022-30190, was reported by crazyman of the Shadow Chaser Group.
Microsoft says the flaw impacts all Windows versions still receiving security updates (Windows 7+ and Server 2008+).
World-Wide Business Centres
Office Space, Meeting Rooms, Virtual Offices, CoWorking and FlexSpace
575 Madison Avenue – 10th floor
New York, NY 10022