The flaw can be exploited by potential hackers using other attack vectors as well, for example, by directly inserting a USB-drive with a malicious file stored on it, or delivering the malicious file via drive-by-downloads. "The script is constructed using a template, which makes it possible to embed VBScript in a filename and trigger its execution." "Instead of parsing an MSI file to get its version number, this code creates a script containing the filename for which a thumbnail should be shown and executes that using Wine," Moskopp explains while demonstrating his PoC. msi file, GNOME Files takes the filename as an executable input and run it in order to create an image thumbnail.įor successful exploitation of the vulnerability, an attacker can send a crafted Windows installer (MSI) file with malicious VBScript code in its filename, which if downloaded on a vulnerable system would compromise the machine without further user interaction. Moskopp discovered that while navigating to a directory containing the. msi file, GNOME Files takes the filename as an executable input and run it in order to create an image thumbnail. Those who are unaware, Wine is a free and open-source software that allows Windows applications to run on the Linux operating system. Those who are unaware, Wine is a free and open-source software that allows Windows applications to run on the Linux operating system.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |