Jerry 🦙💝🦙Happy Patch Tuesday to those that celebrate!
Also, I have been wondering, as code bases go, might Windows be the one with the largest number of critical CVEs?
Fritz Adalis@jerry
I'd like to interject for a moment. What you're referring to as Windows is, in fact, NT, or as I've taken to calling it, Windows plus VMS.
I'd like to interject for a moment. What you're referring to as Windows is, in fact, NT, or as I've taken to calling it, Windows plus VMS.
The_Moose_Man@jerry fortinet close second.
Frank Barton@jerry https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35628
And I quote:
Is the Preview Pane an attack vector for this vulnerability?
The attacker could exploit this vulnerability by sending a specially crafted email which triggers automatically when it is retrieved and processed by the Outlook client. This could lead to exploitation BEFORE the email is viewed in the Preview Pane.
@jerry no… the emphasis wasn’t mine
Darth Sneakers*Adobe has entered the chat
Nick Josevski@DarthSn3ak3rs yes I came here to point out Adobe too! If flash wasn’t killed it would be #1 excluding all of Adobes other insecure offerings!
C.Besides the sheer size of the #codebase, Windows' fanatical #dedication to backwards #compatibility means there's a lot of really old code still in use. I suspect code written 20+ years ago is fairly likely to contain security problems that would never get written today.
shellsharks@jerry Adobe and Oracle might be competition here..