 |
Post AtMJ1q6a8RFfOrbQNU by [email protected] |
 |
More posts by [email protected] |
|
Post #AtLs702Tvn64tXvA1o by [email protected] |
|
0 likes, 2 repeats |
|
|
|
I've written about how Microsoft's fix for a symlink vulnerability intr… |
|
|
|
Post #AtLy7ydDFWM2Xmx0hE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog cool, now trying to write a PowerShell detection for this. |
|
|
|
Post #AtMA0Om5MgdWl6FnRg by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@ajn142 and find that it stops PowerShell from working? š @GossiTheDog |
|
|
|
Post #AtMAFqU8cVVV2rDzTU by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog honestly surprised that non-admins can create junctions. What'… |
|
|
|
Post #AtMF58D2sfU8bLwM3E by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog or just install Windows N (the version with no media codecs)Securi… |
|
|
|
Post #AtMJ1q6a8RFfOrbQNU by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog I still can't quite believe _this_ was their fix. |
|
|
|
Post #AtNB8M7RPs11x3YpZw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog I remeber 15 years ago all the symlink vulnerabilities on unix/lin… |
|
|
|
Post #AtNo7nAFH1vTkmav9E by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Are you sure the writeup for CVE-2025-21204 you linked is good? It… |
|
|
|
Post #AtNo7nI2o2AG8yF9Iu by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mimir @GossiTheDog You're asking Kevin if the blog post that he wrote is g… |
|
|
|
Post #AtNo7nP8NfpsUxYoM4 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@wdormann @mimir He's referring to the Cyberdpm blog post linked in @GossiT… |
|
|
|
Post #AtNoPGdmvy3c61kJ3Q by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@FritzAdalis @mimir @GossiTheDog Ahh, I totally missed that!Thereās a good wr… |
|
|
|
Post #AtNrh78bIvyzhLMMfw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
There are multiple write ups of the original vuln, Iāve pasted the wrong one … |
|
|
|
Post #AtPJYpQAHa06JCN9yi by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog I have never really dealt with all the symlink stuff but Microsoft… |
|
|
|
Post #AtRoT3QcmBT6uSEZXc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Microsoft have rated the ability for non-admin users to stop Windows patching a… |
|
|
|
Post #AtRoe9gLriqXUSsqZc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Unbelievable... |
|
|
|
Post #AtRvjj6uGqLMUpuN84 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Thatās minor right up until they canāt push out an update for … |
|
|
|
Post #AtS2mypYykl3neIJuK by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog By this logic is there any vulnerability that would be more than m… |
|
|
|
Post #AtSCcwWhgqSxIcKFxw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog fix coming in next NT development semester, hopefully?the last bug… |
|
|
|
Post #AtSVlNXT2bY0WRQ2Cm by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog I still don't get what is so special about C:\inetpub. I get t… |
|
|
|
Post #AtSbnsCMcTzRup7XPs by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog "don't call us. we'll call you." |
|
|
|
Post #AtSlCrEEGJCzjayu0W by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog āplease keep this case open until the fix is deliveredā āple… |
|
|
|
Post #AtSpZypeYdl3nGldVw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog I was able to keep a ticket open with Oracle for 2 years until a c… |
|
|
|
Post #AtcwxLsBhVHzAqdy6K by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@wdormann @FritzAdalis @mimir @GossiTheDog well that post is genuinely fascinat… |
|
|
|
Post #AtcwxLzHH8xbWpxd9U by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mkoek @FritzAdalis @mimir @GossiTheDog You ain't seen nuthin yet... š¬ |
|
|
|
Post #Atcwxt9001LQMXlMO0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@wdormann @FritzAdalis @mimir @GossiTheDog oh yes, it's going to be harder … |
