Why does the notepad app do anything but edit text?
Windows Notepad App Remote Code Execution Vulnerability
Submitted 21 hours ago by Beep@lemmus.org to technology@lemmy.world
https://news.ycombinator.com/item?id=46971516
Comments
hperrin@lemmy.ca 19 hours ago
Venator@lemmy.nz 19 hours ago
Feature creep.
RickyRigatoni@piefed.social 18 hours ago
Creature feep
MonkderVierte@lemmy.zip 18 hours ago
Well, it was bad at that too.
x00z@lemmy.world 18 hours ago
I hate the absolute misuse of the RCE definition. An RCE used to not have any user interaction.
_edge@discuss.tchncs.de 9 hours ago
Is there a non-sense free description.
So far, i learned that notepad can open links from Markdown. I assume Markdown calls some Windows API open(link) where link is any string. That’s hardly a vulnerability by itself, that’s working as designed.
Where does the code execution happen? Is it open(hackersite.com/exploite.exe)? Can’t be. They’re not that stupid.
Is it open(file:///PowerShell.exe?atbitaryCodeHere)? Who would allow this?
Or open(teams://magic/doThing)?
This sounds like trying to blame notepad (and by proxy all app developers) for a design flaw in the ecosystem
Fokeu@lemmy.zip 20 hours ago
Damn poor windows users… Just kidding lmao
just_another_person@lemmy.world 21 hours ago
Jesus, WOW
MonkderVierte@lemmy.zip 18 hours ago
8.8 CVSS
Vibecode doing it’s thing.
Chronographs@lemmy.zip 12 hours ago
Well notepad++ hasn’t been looking great notepad-plus-plus.org/…/hijacked-incident-info-up…
MonkderVierte@lemmy.zip 16 hours ago
Btw, ycombinator supports no activitypub? I think it would fit well.
infeeeee@lemmy.zip 21 hours ago
TIL notepad can render markdown
7isanoddnumber@sh.itjust.works 9 hours ago
The addition of markdown support is what opened this vulnerability, iirc.