CVE-2014-4113 - AKA "Huricane Panda”

One of the zero-day flaws patched by Microsoft Oct 14th (MS14-058, KB 3000061) dubbed “Hurricane Panda” is believed to be of Chinese origin and known to be targeting infrastructure companies. This exploit in X64 based Windows systems enables attackers to elevate privileges to those of the SYSTEM user and then create a new process with these access rights to run a command passed as an argument. 
Tanium delivers instant visibility and control over the operating system patches, ensuring the ability to rapidly to respond to this vulnerability. Customers can address this vulnerability using the Windows OS Patch Management Dashboard to identify computers that require patch KB 3000061 and deploy patches following the process documented in the Tanium Patch Management Guide here.
Have more questions? Submit a request