Talos is releasing an advisory for a remote denial of service attack vulnerability in Microsoft Windows 10 AHCACHE.SYS.
An attacker can craft a malicious portable executable file, which if accessed causes AHCACHE.SYS to attempt to access out of scope memory. This triggers a bugcheck in the Windows kernel causing the system to crash, denying service to the user. Although AHCACHE.SYS is the driver that handles local cache compatibility information, if the vulnerability is exploited the attacker is unable to execute code or elevate user privileges.
We see many remote code execution vulnerabilities and as usual
Thank you for the info. I hope the vulnerability has been corrected on major windows 10 out there. We need to take it to the social networks so that users, administrators can aware. Thanks
Thanks for the comment. Our disclosures always comply with Cisco’s responsible disclosure policy. This particular vulnerability was patched in MS’s September patch Tuesday.