Yikes
Impact: Remote Code Execution
Max Severity: Critical
Weakness: CWE-191: Integer Underflow (Wrap or Wraparound)
> An unauthenticated attacker could repeatedly send IPv6 packets, that include specially crafted packets, to a Windows machine which could enable remote code execution.
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2024-38063 #Windows #Security
Wesley Moore /
npub1f7…efyr8
2024-08-15 03:12:15
Author Public Key
npub1f7lh9a8j8pfcsmch67za4czqj4l3fxcsz5jwm5p0350h8drdvp8ssefyr8Published at
2024-08-15 03:12:15Event JSON
{
"id": "80693c13af11ec5ad87a25bff5413606de8c15661119718f32adbb935d77fb59",
"pubkey": "4fbf72f4f23853886f17d785dae040957f149b101524edd02f8d1f73b46d604f",
"created_at": 1723691535,
"kind": 1,
"tags": [
[
"t",
"windows"
],
[
"t",
"security"
],
[
"proxy",
"https://mastodon.decentralised.social/users/wezm/statuses/112963848480901123",
"activitypub"
]
],
"content": "Yikes \n\nImpact: Remote Code Execution\nMax Severity: Critical\nWeakness: CWE-191: Integer Underflow (Wrap or Wraparound)\n\n\u003e An unauthenticated attacker could repeatedly send IPv6 packets, that include specially crafted packets, to a Windows machine which could enable remote code execution.\n\nhttps://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2024-38063 #Windows #Security",
"sig": "c2bc419bf0cdf0e9f2c2068741f7a76fa8617d21e2169671e8eeb7c1e8e8df19b8767e2dbe4ca9f1c5262f22f833a3716cf01aa2d56eb72e01e525a5cdf8e784"
}