Be Aware of a Vulnerability Called Follina in Microsoft Word

BotunaBotuna
2 min read

After a few months, there are no more security holes in the operating system that many people use. When most people feel safe, they seem to be completely wrong now because there is a security flaw in Microsoft Word called Follina.

Information related to the security breach on behalf of Follin was discovered at the end of last month, more precisely on May 27. I don't know how, but it seems that the existence of this security hole uses the Microsoft Word security hole.

By releasing information from Wallet Guard on Twitter, this security hole called Follina generally allows hackers to gain access to the victim's computer. In some cases, a hacker no longer has to laboriously hack the victim's computer in a "conventional" way. The murder does not even require the victim to open the file first.

What's worse is that this gap is not detectable by antivirus either, because access to the template is part of Microsoft Word.

Interestingly, Wallet Guard says that this vulnerability called Follina uses HTML templates and provides Powershell access. In addition, Powershell implements the Microsoft Support Diagnostic Tool (MSDT), which gives hackers complete control over the victim's personal computer. MDST requires the victim's password to access this feature. However, Wallet Guard points out that MSDT actually has a deadly vulnerability, a buffer overflow that allows hackers to gain access without guessing the password.

Wallet Guard even shows how a security breach allows a victim's computer to be accessed by simply searching the File Explorer.

0
Subscribe to my newsletter

Read articles from Botuna directly inside your inbox. Subscribe to the newsletter, and don't miss out.

Written by

Botuna
Botuna

Hi, i will share my experience.