Explore tweets tagged as #BatBadBut
Today, Rust 1.77.2 will be released with a critical security patch to the standard library for those on Windows using the Command API to invoke batch files with untrusted arguments. No other platform or use is affected. See the announcement for details:
8
47
294
Windows: New 'BatBadBut' Rust Vulnerability Given Highest Severity Score https://t.co/H2VTOwQ1qF
0
0
0
Critical 'BatBadBut' Rust Vulnerability Exposes Windows Systems to Attacks https://t.co/alnfV8GH4J
0
0
0
⚠️ #INCIBEaviso | #BatBadBut: #vulnerabilidad crítica en #Rust. #AvisosDeSeguridad #TI
https://t.co/msSZhaZXer
0
1
2
BatBadBut: You can't securely execute commands on Windows https://t.co/7XXFGis8tN
#Pentesting #Windows #CyberSecurity #Infosec
0
4
12
Windows Systems Vulnerable to Attacks Due to Critical 'BatBadBut' Rust Flaw https://t.co/dVoXH9eh6o
0
1
3
Rust rustles up fix for 10/10 critical command injection bug on Windows in std lib: BatBadBut hits Erlang, Go, Python, Ruby as well Programmers are being urged to update their Rust versions after the security experts working… https://t.co/oqxMqXOFvk
#cybersecurity #infosec
0
1
2
⚠️The `BatBadBut` vulnerability has been published affecting the most popular programming languages. The vulnerability only affects Windows machines and requires invoking Batch files (.bat) that accept parameters from external input, which is not very common (see flowchart by
1
5
13
BatBadBut Jeśli: 1️⃣ Używasz Windowsa 2️⃣ Uruchamiana komenda kończy się na .bat lub .cmd 3️⃣ Użytkownik kontroluje przekazywane argumenty Istnieje możliwość "wstrzyknięcia" dodatkowej komendy. W tym przykładzie uruchomi się kalkulator - choć nie powinien. Źródło: @ryotkak
1
1
20
ช่องโหว่ BatBadBut สรุปแบบอ่านคร่าว ๆ (กระทบเฉพาะใน Windows ภายใต้เงื่อนไขแบบเจาะจง) ปกติเวลาเราเขียนโปรแกรม แล้วจะรัน OS Command พวกฟังก์ชันในแต่ละภาษาโปรแกรมจะมี หลัก ๆ 2 แบบคือ 1. เรียกฟังก์ชันเช่น exec('<ใส่คำสั่ง OS Command>') แบบนี้จะรวม โปรแกรม กับ Argument
0
18
17
‘BatBadBut’ Command Injection Vulnerability Affects Multiple Programming Languages: A critical vulnerability in multiple programming languages allows attackers to inject commands in Windows applications. The post ‘BatBadBut’ Command Injection… https://t.co/Yp2L2P3XPR
0
1
0
Critical 'BatBadBut' Rust Vulnerability Exposes Windows Systems to Attacks: A critical security flaw in the Rust standard library could be exploited to target Windows users and stage command injection attacks. The vulnerability, tracked as… https://t.co/8GpjyOgZhT
0
1
0
Rust の Command に見つかったクリティカルな脆弱性(CVE-2024-24576) について��報告者が丁寧な解説を書いてくれてる.cmd.exe の引数のクォートは難しくて時には不可能という話."%VAR%" で VAR がダブルクォート含んでいた場合にそれもパースされるのか…
1
80
138
Windows: New 'BatBadBut' Rust Vulnerability Given Highest Severity Score: A flaw in the Rust standard library exposes Windows systems to command injection attacks https://t.co/NOgucaZlPa
0
0
0
🔴 آسیبپذیری تزریق فرمان برنامههای ویندوز از طریق نقص BatBadBut مجموعه Flatt Security یک آسیبپذیری بحرانی به نام BatBadBut کشف کرده است که میتواند به مهاجمان اجازه دهد تا دستورات مخرب را به برنامههای... #Cybersecurity #Cyber_Attack #BatBadBut #Rust
https://t.co/BkGkr8Af2A
0
0
2
#PiratageCybercriminalité "BatBadBut", cette faille hautement critique qui affecte les systèmes Windows https://t.co/y3JuAzco6Y
0
1
0
BatBadBut: You can't securely execute commands on Windows - Flatt Security Research https://t.co/WjQ21kRqlY Windows魔境すぎる
1
7
12
[IT-Connect] - BatBadBut : une faille critique de Rust expose les machines Windows à des attaques ! - https://t.co/RYYMsw6np7 👌😁
0
0
0
#Threat_Research 1. BatBadBut: You can't securely execute commands on Windows https://t.co/Yjn8tYUoDU 2. New Technique to Trick Developers Detected in an Open Source Supply Chain Attack https://t.co/zVnr7t0RSQ
0
1
10
CrewCTF 2024 Writeup https://t.co/Y2kW1noolq BatBadButが出題されてました
0
0
25