CVE-2014-4114 - AKA “Sandworm"

Information:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4114
Description:
Cyber espionage operators dubbed the “Sandworm” team have carried out a sustained campaign using multiple variants of the “BlackEnergy” malware exploiting CVE-2014-4114 and other vulnerabilities. This vulnerability in MS Office allows remote attackers to execute arbitrary code.
Tanium delivers instant visibility and control over the operating system patches, ensuring the ability to rapidly to respond to this vulnerability. Customers can address this vulnerability using the Windows OS Patch Management Dashboard to identify computers that require patch KB 3000869  and deploy patches following the process documented in the Tanium Patch Management Guide here.
Have more questions? Submit a request