0x0@programming.dev to Programming@programming.dev · 7 months agoCritical Rust flaw enables Windows command injection attackswww.bleepingcomputer.comexternal-linkmessage-square35fedilinkarrow-up1141arrow-down18cross-posted to: security@lemmy.mlpulse_of_truth@infosec.pub
arrow-up1133arrow-down1external-linkCritical Rust flaw enables Windows command injection attackswww.bleepingcomputer.com0x0@programming.dev to Programming@programming.dev · 7 months agomessage-square35fedilinkcross-posted to: security@lemmy.mlpulse_of_truth@infosec.pub
minus-squaredrjkl@programming.devlinkfedilinkarrow-up12·7 months agoI’ve run into bizarre behavior with windows command lines plenty of times before, but I’d never put all the pieces together and realized that: a) windows really does pass around unadorned monolithic strings containing the entire command line of an executed command, and b) there’s no parsing standard for command lines in windows sigh, windows
I’ve run into bizarre behavior with windows command lines plenty of times before, but I’d never put all the pieces together and realized that:
a) windows really does pass around unadorned monolithic strings containing the entire command line of an executed command, and
b) there’s no parsing standard for command lines in windows
sigh, windows