Microsoft has released an emergency update to fix a Wi-Fi-related security vulnerability. This flaw allows attackers to connect to the network and steal information. Here are the details…
Microsoft releases update to fix critical Wi-Fi vulnerability
With the latest Patch Tuesday update, Microsoft has addressed 49 CVE-labeled Wi-Fi security vulnerabilities in its products. One of these vulnerabilities, rated as critical with a CVSS severity score of 9.8 out of 10, falls under the “most likely to be exploited” category. This critical flaw allows anyone using the same public Wi-Fi network to execute remote attacks.
This security flaw stems from a remote code execution (RCE) issue in the Microsoft Message Queuing (MSMQ) system. An attacker can send a specially crafted malicious MSMQ packet to execute arbitrary code on a vulnerable Windows system (such as a Windows Server box). This flaw affects Windows 11, Windows 10, and Windows Server 2008 and later versions.
RCE vulnerabilities are dangerous because they do not require physical access. In this case, it is enough for attackers to be connected to the same Wi-Fi network. Attackers can easily exploit this flaw by sending a specially crafted network packet to a vulnerable device. This poses a particular threat to those who like to work in public places such as libraries, coffee shops, or airports.
Microsoft has stated that there is no evidence of this vulnerability being exploited in the wild. However, it is common for malicious actors to act quickly once a vulnerability is published. Unlike two zero-day vulnerabilities patched in May 2024 (CVE-2024-30040 and CVE-2024-30051) which were actively exploited, there have been no detected exploits for this flaw.
This update is considered a relatively small patch for Microsoft. According to Dustin Childs from Zero Day Initiative, the number of documented CVEs this month actually reaches 58 when including third-party CVEs. Microsoft has also released the Windows 11 Build 26241 beta version, which includes a new feature that makes it easier to move files in File Explorer.
Users can move files using drag-and-drop between breadcrumbs in the File Explorer Address Bar. Additionally, a thin border has been added to make it easier to see selected files or folders in File Explorer. This beta version also fixes a core issue that caused File Explorer to crash when going to the Home page.
What do you think? Share
{{user}} {{datetime}}
{{text}}