Skip to content
  • Hjem
  • Seneste
  • Etiketter
  • Populære
  • Verden
  • Bruger
  • Grupper
Temaer
  • Light
  • Brite
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor
  • Default (No Skin)
  • No Skin
Kollaps
FARVEL BIG TECH
  1. Forside
  2. Ikke-kategoriseret
  3. Microsoft: I have made Notepad✨

Microsoft: I have made Notepad✨

Planlagt Fastgjort Låst Flyttet Ikke-kategoriseret
3 Indlæg 3 Posters 10 Visninger
  • Ældste til nyeste
  • Nyeste til ældste
  • Most Votes
Svar
  • Svar som emne
Login for at svare
Denne tråd er blevet slettet. Kun brugere med emne behandlings privilegier kan se den.
  • tess@mastodon.socialT This user is from outside of this forum
    tess@mastodon.socialT This user is from outside of this forum
    tess@mastodon.social
    wrote sidst redigeret af
    #1

    Microsoft: I have made Notepad✨

    Security researchers: You fucked up a perfectly good plaintext editor is what you did. Look at it. It's got RCEs.

    https://www.cve.org/CVERecord?id=CVE-2026-20841

    jbaggs@infosec.exchangeJ S 2 Replies Last reply
    1
    0
    • tess@mastodon.socialT tess@mastodon.social

      Microsoft: I have made Notepad✨

      Security researchers: You fucked up a perfectly good plaintext editor is what you did. Look at it. It's got RCEs.

      https://www.cve.org/CVERecord?id=CVE-2026-20841

      jbaggs@infosec.exchangeJ This user is from outside of this forum
      jbaggs@infosec.exchangeJ This user is from outside of this forum
      jbaggs@infosec.exchange
      wrote sidst redigeret af
      #2

      @tess I'm going to absolutely lose my shit if this ever happens to stock vi. (No, not vim, though I like the context highlighting.)

      1 Reply Last reply
      0
      • tess@mastodon.socialT tess@mastodon.social

        Microsoft: I have made Notepad✨

        Security researchers: You fucked up a perfectly good plaintext editor is what you did. Look at it. It's got RCEs.

        https://www.cve.org/CVERecord?id=CVE-2026-20841

        S This user is from outside of this forum
        S This user is from outside of this forum
        slotos@toot.community
        wrote sidst redigeret af
        #3

        @tess

        > How could an attacker exploit this vulnerability?
        >
        > An attacker could _trick a user into clicking a malicious link_ inside a Markdown file opened in Notepad, causing the application to launch unverified protocols that load and execute remote files.

        That’s not an RCE, is it?

        1 Reply Last reply
        0
        • tofticles@helvede.netT tofticles@helvede.net shared this topic
        Svar
        • Svar som emne
        Login for at svare
        • Ældste til nyeste
        • Nyeste til ældste
        • Most Votes

        • Log ind
        • Har du ikke en konto? Tilmeld
        • Login or register to search.
        Powered by NodeBB Contributors
        Graciously hosted by data.coop
        • First post
          Last post
        0
        • Hjem
        • Seneste
        • Etiketter
        • Populære
        • Verden
        • Bruger
        • Grupper