Yikes Impact: Remote Code Execution Max Severity: Critical...

Yikes

Impact: Remote Code Execution
Max Severity: Critical
Weakness: CWE-191: Integer Underflow (Wrap or Wraparound)

> An unauthenticated attacker could repeatedly send IPv6 packets, that include specially crafted packets, to a Windows machine which could enable remote code execution.

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2024-38063 #Windows #Security

Like 15 August at 3:12 | Open on mastodon.decentralised.social

2 comments

Matt

@wezm yikes indeed. So that’s basically all unpatched windows 10 and 11 machines vulnerable to remote code execution, right?

15 August at 3:35 | Open on mastodon.social

Wesley Moore

@mattdarveniza yes seems like it.

15 August at 3:38 | Open on mastodon.decentralised.social