WINDOWS NOTEPAD APP REMOTE CODE EXECUTION VULNERABILITY
Uncategorized
66
Posts
44
Posters
0
Views
-
@solonovamax "An attacker could trick a user into clicking a malicious link inside a Markdown file opened in Notepad, causing the application to launch unverified protocols that load and execute remote files."
Why have they made their plaintext editor render markdown??
@Kiloku@burnthis.town @solonovamax@tech.lgbt let's all be honest, when we think of a basic plaintext editor, we all think it's in direct competition with tools like iotas, or even obsidian or nextcloud notes
-
WINDOWS NOTEPAD APP REMOTE CODE EXECUTION VULNERABILITY
@solonovamax @Stellar this needs sooo many facepalms, but here's one for now
-
@solonovamax@tech.lgbt this file went all the way from audacity recording to mp2 to mp3 and then to fedi
-
WINDOWS NOTEPAD APP REMOTE CODE EXECUTION VULNERABILITY
@solonovamax How can they screw up a fucking notepad? it's just supposed to store a few fucking letters and nothing else
-
@solonovamax this seems like it's just clicking a malicious link with a weird protocol. does the attacker need to have a specific protocol handler installed? why is this not exploitable from other apps that display untrusted links?
-
@solonovamax@tech.lgbt this file went all the way from audacity recording to mp2 to mp3 and then to fedi
@memdmp mp2????
-
@memdmp mp2????
@solonovamax@tech.lgbt thats right, to make it more compressed sounding i took out the MPEG-2 Audio Layer II for this bitch
-
WINDOWS NOTEPAD APP REMOTE CODE EXECUTION VULNERABILITY
@solonovamax bingo anyone?
-
@solonovamax@tech.lgbt thats right, to make it more compressed sounding i took out the MPEG-2 Audio Layer II for this bitch
@solonovamax@tech.lgbt then back to mp3 for compatibility with fedi
-
@solonovamax I wish, I really wish, I could get the fuck off windows
@freya what's stopping you? Linux is here to love you. :P
-
@freya what's stopping you? Linux is here to love you. :P
@malachai accessibility, or the lack thereof
-
@freya what's stopping you? Linux is here to love you. :P
@malachai also uh............. UI stability. or the lack thereof. finally decide on one desktop, one UI toolkit, one everything, and things might start actually working
-
@solonovamax it's not April yet what the fuck
-
OH MY FUCKING GOD
@solonovamax i was going to ask if you were joking but the omfg answers that -
@solonovamax remote code execution or local command injection? the cve seems confused. either way lol
-
@solonovamax i was going to ask if you were joking but the omfg answers that@solonovamax like it's just days ago we learn about the np++ update breach and like did MS feel an inferiority complex or what
-
@solonovamax "An attacker could trick a user into clicking a malicious link inside a Markdown file opened in Notepad, causing the application to launch unverified protocols that load and execute remote files."
Why have they made their plaintext editor render markdown??
@Kiloku @solonovamax lmao LOVE local user interaction bugs called RCE, this never dies
-
@malachai accessibility, or the lack thereof
@freya accessibility as in for disability? KDE Plasma has a massive accessibility suite. :) It's also very pretty and extremely configurable.
-
@malachai also uh............. UI stability. or the lack thereof. finally decide on one desktop, one UI toolkit, one everything, and things might start actually working
@freya I've been daily driving Ubuntu then cachyos for a long time with basically no issues that I didn't cause myself. Rock solid aside from some self-caused crashing
-
@freya accessibility as in for disability? KDE Plasma has a massive accessibility suite. :) It's also very pretty and extremely configurable.
@malachai it has many accessibility features, yes, unfortunately the screenreader (which is what I need) is a glitchy unstable mess, and modern UI frameworks make this worse, as does Wayland and Pipewire and suchlike. there's no large amount of funding going into Linux desktop accessibility, and it's such a moving target at this point that getting stable accessibility is really hard
Gli ultimi otto messaggi ricevuti dalla Federazione
-
@paoloredaelli
Molto prima di globo un mio amico ci campava durante università.
Una sola pizzeria, nel we.
Sfruttato pure lui, ma sempre meno che oggi.E ho da ridire anche sulle "borse" lercie che vedo usare.
Non mi ispira vederci uscire cibo da lì.
-
@ro mah...ogni volta che leggo della disoccupazione più bassa da X anni, mi chiedo cosa facciano tutti questi lavoratori, tra gigafactory che non si fanno, negozi che chiudono uno dopo l'altro...deve essere noioso passare otto ore in un capannone pieno di macchine ferme o in un negozio con le serrande abbassate.
-
@paoloredaelli Non vivo più a Milano da anni, adesso sono in provincia di Bergamo, e iniziano a diffondersi anche qui... (dove le pizzerie locali tuttavia venerdì e sabato hanno frotte di studenti - non so quanto pagati - per portar le pizze con la loro auto/scooter).
Non ho mai potuto capire come le persone non ragionino sul fatto che è puro sfruttamento di persone che hanno un gran bisogno di guadagnare dei soldini per campare e sono così brave da farlo onestamente....e vengono spremute come limoni purtroppo.
-
@paoloredaelli condividi, mai usate queste app in vita mia. Non ne sento il bisogno
-
Ci vado io
Inchiesta Glovo a Milano: pagati 2,50€ a consegna. Tronfio di aver sempre evitato come la peste questi servizi di consegna a domicilio (Glovo, Just Eat, Foodora, Deliveroo) : non voglio essere complice di questa forma moderna e strisciante di schiavitù. Se voglio una pizza da asporto me la vado a prendere. Al Sushi club ci vado io, si chiama take-away per un motivo.Inchiesta Glovo a
https://monodes.com/predaelli/2026/02/11/ci-vado-io/
#Ethics #YetAnotherReasonToAvoid
-
-
@informapirata @aitech @DataKnightmare
Io , più sommessamente, ho trovato interessante e degna di esser ricordata questa frasetta:
"The world is accelerating, against its will. I can feel it; I grew up in the 1980s, when time really did move more slowly, in the sense that news and events were spaced way out, and society had time to reflect on them. Now it changes so fast we can’t even keep up, let alone reflect."
Per due motivi:
- il primo è lapalissiano, il mondo sta accelerando (il problema è che non si capisce bene perchè, verso dove ecc. non avendo tempo di riflettere....e questo di solito porta male)- il secondo lo trovo più interessante: si inizia a scrivere, non solo fra letterati e filosofi, che il mondo accelera CONTRO la sua volontà...speriamo sia un primo passettino.
-
“He said: ‘As I lifted the gun to show her I suddenly heard a loud bang. I did not understand what had happened. Lucy immediately fell.’
Harrison said he could not recall whether his finger was on the trigger.”
It’s another of those rare times it was the gun’s fault and not the person holding it in a dangerous manner.
Let’s see the NRA talk their way around this.
