Preventing Microsoft CVE-2023–36884

If you are using Trend Micro Apex One, Trend Micro Vision One, Microsoft Defender for Office 365, Paloalto Cortex XDR or XSIAM, Microsoft Defender for Endpoints, then you are safe from this attack.

If you are not using the any of the above products then try to apply patch of July 11 (patch Tuesday). Beside this Microsoft recommends doing the following after some test.

Screenshot of settings for the FEATURE_BLOCK_CROSS_PROTOCOL_FILE_NAVIGATION key to prevent exploitation of CVE-2023–36884

Pic Credit: From Microsoft.

Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_CROSS_PROTOCOL_FILE_NAVIGATION

Add the following application names to this registry key as values of type REG_DWORD with data 1.

Thanks. Hope you like this.

LinkedIn:

https://www.linkedin.com/in/md-mahimbin-firoj-7b8a5a113/

YouTube:

https://www.youtube.com/@mahimfiroj1802/videos