11 matches found
Themebleed Windows 11 Themes Arbitrary Code Execution
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Themebleed- Windows 11 Themes Arbitrary Code Execution CVE-2023-38146', 'Description' = %q When an unpatched Windows 11 host loads a theme file...
Themebleed- Windows 11 Themes Arbitrary Code Execution CVE-2023-38146
When an unpatched Windows 11 host loads a theme file referencing an msstyles file, Windows loads the msstyles file, and if that file's PACKMEVERSION is 999, it then attempts to load an accompanying dll file ending in vrf.dll Before loading that file, it verifies that the file is signed. It does...
‘ThemeBleed’ flaw in Windows 11 Enables Code Execution
Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary The CVE-2023-38146 vulnerability in Windows 11 allows remote attackers to execute arbitrary code, potentially compromising the affected systems security and integrity, and posing a significant...
ThemeBleed exploit is another reason to patch Windows quickly
Included in the September 2023 Patch Tuesday updates was a fix for a vulnerability which has been dubbed ThemeBleed. A Proof-of-Concept PoC exploit has been released by Gabe Kirkpatrick, one of the researchers acknowledged for reporting the vulnerability. The Common Vulnerabilities and Exposures...
Microsoft Windows Multiple Vulnerabilities (KB5030219)
This host is missing an important security update according to Microsoft KB5030219 SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
CVE-2023-38146
creationtimestamp| type| source ---|---|--- 2023-09-12 20:29:23+00:00| seen| https://t.me/cibsecurity/70331 2023-09-14 12:39:51+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/5133 2023-09-14 12:49:46+00:00| published-proof-of-concept| https://t.me/arvinclub1/750 2023-09-14...
CVE-2023-38146
Windows Themes Remote Code Execution Vulnerability...
CVE-2023-38146 Windows Themes Remote Code Execution Vulnerability
...
CVE-2023-38146
CVE-2023-38146 (ThemeBleed) is a Windows 11 Theme loading RCE. Theme files reference an msstyles resource; when PACKME_VERSION is 999 Windows loads a signed dll for verification, then re-opens it for execution, creating a time-of-check/time-of-use race that an attacker can exploit by pointing to ...
KB5030217: Windows 11 version 21H2 Security Update (September 2023)
The remote Windows host is missing security update 5030217. It is, therefore, affected by multiple vulnerabilities - Windows Themes Remote Code Execution Vulnerability CVE-2023-38146 - Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability CVE-2023-35355 - Windows GDI Elevati...
KB5030219: Windows 11 version 22H2 Security Update (September 2023)
The remote Windows host is missing security update 5030219. It is, therefore, affected by multiple vulnerabilities - Windows Themes Remote Code Execution Vulnerability CVE-2023-38146 - Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability CVE-2023-35355 - Windows GDI Elevati...