New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
Guess that’s enough chunks of salt
Holy crap, Slashdot is still around.
Don't forget Digg.com too.
There was never a "crisis" or even the researcher wouldn't have dropped it like this. I've been sitting on a Windows catastrophe* that I can never brag about because I don't have the clout to get it resolved, (for 4 years and counting)
*Can't prove it, didn't happen
windows search is a catastrophe we all already know about
CVSS Score 10.0 (THREAT LEVEL MIDNIGHT)
CWE-ID / CWE Name / Source
CWE-01 - Using A Microsoft Product - IYKYK
CPE: Microsoft:*
Remedy - Air-gap and apply a faraday cage around computer. Apply hotfix : KB042069. See article "How to install Windows Updates via incantation and spells for air-gapped computers" for further instructions
Status changed from "SEVERE-BUG" to "INTENDED-FEATURE"
Rumor is, the vulnerability is in CUPS as you can see the author discussing it here on github.
https://github.com/OpenPrinting/cups-browsed/issues/36
If this is it, this person's credibility just went down the drain.
that is a separate issue (denial of service), why are rumors linking that to anything evilsocket said about the RCE vuln from a few days ago?
Reaction from evilsocket makes it fairly clear the openprinting maintainer has received the security report re: RCE.
Because you can see he's getting really mad here about not following the procedure for GHSA. If it was just a dos attack to a desktop user's printer system, there would be no need for this kind of vitriol.
gotchu, i see what you mean. lets see this weekend when patches drop
I feel NFS or a similar heavyweight kernel serviyus more likely. The kind of thing you shouldn't run over the internet without a firewall, but people do.
12 minutes to full disclosure
https://x.com/evilsocket/status/1839379204598853758?s=46
When I saw that it was evilsocket, I immediately disregarded the entire thing. It's just sad how much attention he is getting with his made up claims
its out
https://www.evilsocket.net/2024/09/26/Attacking-UNIX-systems-via-CUPS-Part-I/
A bit anticlimactic it being printers.
The devs pushing back on this one is completely justified.
https://cyberplace.social/@GossiTheDog/113205486699404560
Insane!
Affected kernel versions is a huge leap.
https://www.evilsocket.net/2024/09/26/Attacking-UNIX-systems-via-CUPS-Part-I/
I didn't read it because I don't want to reward chicken little behavior with engagement but I'm guessing the fix is:
As long as you're not using CUPS,
$ systemctl cups stop
$ systemctl cups disable
Done?
https://infosec.exchange/@wdormann/113205636224106943
As expected
Really...
What a ridiculous nothing burger
Evilsocket’s (Simone Margaritelli’s) opinion permanently disregarded
https://x.com/evilsocket/status/1292554433146961920
An all time classic
This is the face of someone who makes good decisions.
Oooh my gawd, unholy shit! We'll have to stop using our VPSs and dedis as remote cups servers, oh no!!!
Btw, any providers here offering access to a decent printer and a "we not only print your stuff but also ship the printouts to you!" service? I'm asking because it gets a bit tiresome to send files I want to print to my remote-print-VPS which then has to remote access my local printer. And a security risk too due to level 13 vuln (Redhat confirmed says the fake screenshot)!
@evilsocket bye bye, you idiot! Next time at least point your doooomsday!!! canon in the right direction.
The elephant in the room is that we all got a bit dumber: https://www.scientificamerican.com/article/covid-19-leaves-its-mark-on-the-brain-significant-drops-in-iq-scores-are/