Microsoft confirms second 0-day exploited by Void Banshee APT (CVE-2024-43461)
https://www.helpnetsecurity.com/2024/09/16/cve-2024-43461-exploited/
CVE-2024-43461, a spoofing vulnerability affecting Windows MSHTML – a software component used by various apps for rendering render web pages on Windows – “was exploited as a part of an attack chain relating to CVE-2024-38112, prior to July 2024,” Microsoft has revealed.
originally posted at https://stacker.news/items/687924
ch0k1
npub1k3…q9t9m
2024-09-17 09:50:04
Author Public Key
npub1k3qrkfq45qsvyp53hvvv2xk6tt9kfdca9asfvm9nc796dq65948q9q9t9mPublished at
2024-09-17 09:50:04Event JSON
{
"id": "ff6c2ea7cce8b6a56e48b2f9fdffc08a739ffbbb1cee3bc16c0c9b408ef28b58",
"pubkey": "b4403b2415a020c20691bb18c51ada5acb64b71d2f60966cb3c78ba683542d4e",
"created_at": 1726566604,
"kind": 1,
"tags": [],
"content": "Microsoft confirms second 0-day exploited by Void Banshee APT (CVE-2024-43461)\nhttps://www.helpnetsecurity.com/2024/09/16/cve-2024-43461-exploited/\n\nCVE-2024-43461, a spoofing vulnerability affecting Windows MSHTML – a software component used by various apps for rendering render web pages on Windows – “was exploited as a part of an attack chain relating to CVE-2024-38112, prior to July 2024,” Microsoft has revealed.\n\noriginally posted at https://stacker.news/items/687924",
"sig": "09df12ac0e9e620f8f41545929d423b54b2d352d1039d928ea7905122d677abcd0890c6d4318a1ce8834e7d197e55c9065e08fe795fecfe2ca9329bde97443f8"
}