Forum Discussion
CVE-2023-36884 remediation impact
It is best to choose several computers, perform a test - this is the easiest way, it does not seem that you will get an answer here.
In addition, errors are less of a threat than an attack using a vulnerability.
Hi HaziqNi,
Microsoft is afraid to turn it off themselves because they are afraid that it might break too many existing things. This is one of those features that Microsoft should never have made possible. They knew the dangers since IE 9.0.1 in 2011.
Anyway, customers who use Microsoft Defender for Office are protected from attachments that attempt to exploit. In addition, customers who use Microsoft 365 Apps (Versions 2302 and later) are protected from exploitation of the vulnerability via Office.
- Hi MathieuVandenHautte, thanks for the info, i don't recall seeing any info on Microsoft 365 Apps (Versions 2302 and later) are protected from exploitation of the vulnerability via Office. I'll shall look into this thank you!
My organization's Vulnerability Scanner mentioned that we are required to implement the registry remediation process since we do not use Microsoft Defender for Office, hence why my original question is to identify what impact will it bring from the remediation before I proceed with any change.It is best to choose several computers, perform a test - this is the easiest way, it does not seem that you will get an answer here.
In addition, errors are less of a threat than an attack using a vulnerability.
- Hi A1,
It would seem that way and i do believe this is the best route to take for now.
Thanks alot!
