Erik Nygren :verified: on Nostr: Yikes. CVSS 9.8 RCE in Windows #IPv6 stack due to integer underflow, presumably ...
Yikes. CVSS 9.8 RCE in Windows #IPv6 stack due to integer underflow, presumably wormable. Patch ASAP! I wonder how many years this will set us back from people turning off IPv6 rather than patching. It can be exploited before the host firewall is even applied. It's unclear what triggers it which means it's unclear if there's a way to block on network firewalls short of blocking IPv6 entirely which isn't an option in many environments.
https://x.com/xiaowei___/status/1823532146679799993 https://www.cve.org/CVERecord?id=CVE-2024-38063Published at
2024-08-15 11:50:40Event JSON
{
"id": "f553f9de9075c8af6829c7c32a14c52b190633dfcb70198942701ee60ad1ae89",
"pubkey": "54592f8c46842ccbf44df7ac381acb2211977fce1f73b88001625f1319baf923",
"created_at": 1723722640,
"kind": 1,
"tags": [
[
"t",
"ipv6"
],
[
"proxy",
"https://hachyderm.io/users/nygren/statuses/112965886972053454",
"activitypub"
]
],
"content": "Yikes. CVSS 9.8 RCE in Windows #IPv6 stack due to integer underflow, presumably wormable. Patch ASAP! I wonder how many years this will set us back from people turning off IPv6 rather than patching. It can be exploited before the host firewall is even applied. It's unclear what triggers it which means it's unclear if there's a way to block on network firewalls short of blocking IPv6 entirely which isn't an option in many environments. https://x.com/xiaowei___/status/1823532146679799993 https://www.cve.org/CVERecord?id=CVE-2024-38063",
"sig": "889cd51c9c2fc474d8570cfee92fb659f44a2830c2247051e7d3188602eb14fc80ab6d69cff7c593872f7719d9a3887e5b295b616a731e9cc352e8d0d01e4b84"
}
