Microsoft Patch Tuesday March 2023: Outlook EoP, MOTW Bypass, Excel DoS, HTTP/3 RCE, ICMP RCE, RPC RCE

Hello everyone! This episode will be about Microsoft Patch Tuesday for March 2023, including vulnerabilities that were added between February and March Patch Tuesdays. Exploitation in the wild or a public exploit 00:44 Elevation of Privilege - Microsoft Outlook (CVE-2023-23397) 02:11 Security Feature Bypass - Windows SmartScreen (CVE-2023-24880) 03:12 Denial of Service - Microsoft Excel (CVE-2023-23396) Potentially very dangerous 03:56 Remote Code Execution - HTTP Protocol Stack (CVE-2023-23392) 04:37 Remote Code Execution - ICMP (CVE-2023-23415) 05:59 Remote Code Execution - Remote Procedure Call Runtime (CVE-2023-21708, CVE-2023-23405, CVE-2023-24869, CVE-2023-24908) Other 07:01 7 CVEs Remote Code Execution - Microsoft PostScript and PCL6 Class Printer Driver 07:09 Remote Code Execution - TPM2.0 Module Library (CVE-2023-1017) Blogpost: