homepage
Open menu
Talk with an expert

CVE-2022-26809 MS-RPC Vulnerability Analysis

  • Friday, 15 Apr 2022 11:00AM EDT (15 Apr 2022 15:00 UTC)
  • Speaker: Jake Williams

On Tuesday, April 12th, Microsoft released patches for CVE-2022-26809, reportedly a zero-click exploit targeting Microsoft RPC services. At the time of the publication of this abstract, there is no proof of concept available in the wild. However, based on the rating that exploitation is "more likely" we expect this won't last long. In this webcast, we'll discuss: 

  • Background on Microsoft RPC (so you can talk intelligently about it) 
  • Where the vulnerability lies within rpcrt4.dll 
  • Steps you can take to limit exploitation
  • Logging to enable that is likely to capture exploitation attempts

Join us to prepare for what's likely coming. 

Of course, if exploitation begins before this webcast we'll cover that too.

Login to Register

Related Content

Blog
Why SANS - Blog - Zero Trust - Zero Trust Network Architecture- Ready for Prime Time__340 x 340.jpg
Cyber Defense
Zero Trust Network Architecture: Ready for Prime Time?
This infographic outlines the principles of implementing a Zero Trust architecture by focusing on strategies like micro-segmentation and continuous authentication.For a deeper dive into these topics, download the SANS Zero Trust Strategy Guide and watch the YouTube video to gain actionable...
SANS_social_88x82.jpg
SANS Institute
read more
Blog
Why SANS - Blog - Critical Infrastructure - Supply Chain Attacks- Why Security Leaders Must Act Now_340 x 340.jpg
Cyber Defense
Fortifying the Supply Chain: Strategies for Modern Security Challenges
This infographic emphasizes securing the supply chain against modern threats by distinguishing supply-chain risks from internal risks and recommending best practices for managing external dependencies.For a deeper dive into these topics, download the ICS Strategy Guide and watch the YouTube video...
SANS_social_88x82.jpg
SANS Institute
read more
Blog
Top_10_SANS_Summits_Talks_of_2021.png
Cybersecurity Insights, Digital Forensics, Incident Response & Threat Hunting, Cyber Defense, Cloud Security, Open-Source Intelligence (OSINT), Cybersecurity Leadership, Security Awareness, Artificial Intelligence (AI)
Top 15 SANS Summit Talks of 2023
This year, SANS hosted 16 Summits with 209 talks. Here were the top-rated talks of the year.
370x370-person-placeholder.png
Alison Kim
read more