The little pranksters have something to celebrate again. Computer scientist Jonas Lyk has revealed a bug in Windows that allows you to crash the system using a simple file path, in this case “c: : $ i30: $ bitmap”.
When Windows comes across this string, it thinks its NTFS system disk is corrupted and prompts the user to restart their machine. Long minutes of maintenance then follow, after which Windows can finally come back to life.
NTFS VULNERABILITY CRITICALITY UNDERESTIMATED– Jonas L (@jonasLyk) January 9, 2021
There is a specially nasty vulnerability in NTFS right now.
Triggerable by opening special crafted name in any folder anywhere.’
The vulnerability will instant pop up complaining about yuor harddrive is corrupted when path is opened pic.twitter.com/E0YqHQ369N
The site Bleeping Computer has tested several ways to exploit this flaw. One effective technique is to create a bogus Windows shortcut whose icon is located at the prompted file path.
As soon as the shortcut appears on the screen, Windows tries to load the icon and… crashes.
And to ensure that such a file arrives on a victim’s machine, nothing could be simpler: you just have to stash it in a ZIP archive for example. At each extraction, the system will ask to restart.
In short, be careful what you download from the Web, because the “script kiddies” have already taken action. Microsoft side, no patch is planned to date.
Source : Bleeping Computer
Source: Flux toutes les actualités – 01net by www.01net.com.
*The article has been translated based on the content of Flux toutes les actualités – 01net by www.01net.com. If there is any problem regarding the content, copyright, please leave a report below the article. We will try to process as quickly as possible to protect the rights of the author. Thank you very much!
*We just want readers to access information more quickly and easily with other multilingual content, instead of information only available in a certain language.
*We always respect the copyright of the content of the author and always include the original link of the source article.If the author disagrees, just leave the report below the article, the article will be edited or deleted at the request of the author. Thanks very much! Best regards!