資安事件新聞週報 2021/3/1 ~ 2021/3/5
1.重大弱點漏洞/後門/Exploit/Zero Day
Google Workspace 3月15日起不支援IE11
https://www.ithome.com.tw/news/142963
Google釋出Chrome更新修補已遭開採的漏洞
https://www.ithome.com.tw/news/143023
Oracle WebLogic Server 多個漏洞(2020 年1 月CPU)
https://zh-cn.tenable.com/plugins/nessus/132961
Grub2再現嚴重漏洞,釋出117個修補程式
https://www.ithome.com.tw/news/143054
CISA Issues Emergency Directive on In-the-Wild Microsoft Exchange Flaws
https://thehackernews.com/2021/03/cisa-issues-emergency-directive-on-in.html
Exchange Server零時差漏洞災情,可能比微軟想像中嚴重
https://www.ithome.com.tw/news/143056
微軟IIS 6.0舊漏洞再被用來挖礦
http://www.cmen.cc/news/202103/12896.html
Windows 10 字型曝安全漏洞遭 Google 揭露!微軟釋出安全修補
https://3c.ltn.com.tw/news/43394
Google揭露Windows 10字型元件RCE漏洞
https://www.ithome.com.tw/news/142986
Microsoft 發布安全更新以解決Exchange Server 多個安全性弱點
https://us-cert.cisa.gov/ncas/current-activity/2021/03/02/microsoft-releases-out-band-security-updates-exchange-server
FortiLogger 4.4.2.2 - Unauthenticated Arbitrary File Upload (Metasploit)
https://www.exploit-db.com/exploits/49600