Hello and welcome to the Wednesday, January 11th, 2023 edition of the Sandcent Storm Center's Stormcast.

My name is Johannes Ulrich.

And then I'm recording from Jacksonville, Florida.

Well, it's a patched Tuesday, and of course we got to talk about Microsoft a total of 98 vulnerabilities being

patched. Sometimes people ask you know why they see other numbers being quoted in other

articles. We typically also consider the chromium vulnerabilities that are being

patched as part of Microsoft Edge. We also sometimes include advisories that Microsoft Patch publishes that are not technically

patches, but just some sort of updated configuration guidance and such.

But anyway, so let's dive in what we got here.

Nothing really overly exciting, I think, this month. We got one

exploit, one vulnerability that has already been exploited, and that's an elevation of privilege

vulnerability in the Windows Advanced Local Procedure Call, CVE 2020- 23, 21674.

Interesting here is it's not just sort of a simple privilege escalation, but it's also a browser

sandbox escape vulnerability.

So this would be the vulnerability you need to turn a browser vulnerability into sort of

unrestricted system privileges.

And yeah, definitely something you should pay attention to.

And as I said, it's already being exploited.

We also have previously disclosed vulnerability that has not yet been exploited as far

as Microsoft knows.

And that's another privilege escalation vulnerability

in the Windows SMB witness service. That are critical vulnerabilities affect the Microsoft

...