GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE

  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Untitled attachment

Download link

https://media.infosec.exchange/infosec.exchange/media_attachments/files/112/957/512/255/975/954/original/70ab8f6b875f565a.png

Notices where this attachment appears

  1. Embed this notice
    Will Dormann (wdormann@infosec.exchange)'s status on Thursday, 12-Sep-2024 01:47:45 JST Will Dormann Will Dormann
    in reply to

    This month's Patch Tuesday addresses a MotW bypass: CVE-2024-38213

    Of interest:
    1) Microsoft mentions a SmartScreen bypass, but no mention of Smart App Control (SAC). They do know that SAC is a thing, right?
    2) It's a completely different vulnerability credited to Trend Micro. Apparently called copy2pwn, as it involves copy and paste in the attack.

    Apparently the Elastic Security labs issue, which doesn't require copy and paste, is not important enough to fix. Or give a CVE to. 🤷♂️

    https://msrc.microsoft.com/update-guide/en-us/advisory/CVE-2024-38213

    In conversation about 2 months ago from infosec.exchange permalink
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.