Microsoft reveals workaround for Office zero-day vulnerability that can be used to launch malicious PowerShell commands

While Microsoft may be quick to point out security vulnerabilities in other companies' products, its own software is far from infallible. A good example of this is the recently discovered 'Follina' security hole that affects Microsoft Office. The vulnerability can be exploited to launch PowerShell and execute a variety of malicious commands; all that a victim needs to do is open a specially crafted Word file. Tracked as CVE-2022-30190, Microsoft has released details of a workaround that helps to mitigate the issue. See also: Microsoft researchers discover serious security vulnerabilities in big-name Android apps Microsoft brings WSL 2 distro support… [Continue Reading]