Cybersecurity researchers have disclosed details about a pair of vulnerabilities in Microsoft Windows, one of which could be exploited to result in a denial-of-service (DoS). The exploits, dubbedLogCrusherandOverLogby Varonis, take aim at the EventLog Remoting Protocol (MS-EVEN), which enables remote access to event logs.
While the former allows “any domain user to remotely