news

한어Русский языкEnglishFrançaisIndonesianSanskrit日本語DeutschPortuguêsΕλληνικάespañolItalianoSuomalainenLatina

On August 13, the cybersecurity company Fortra discovered thatThere is a critical driver vulnerability (CVE-2024-6768) in the Windows system that may affect all versions of Windows 10 and Windows 11 operating systems.

Even systems with the latest patches installed cannot avoid being affected by this vulnerability, causing the system to crash with a blue screen.

The vulnerability is located in the Windows Common Journal File System (CLFS.SYS) driver. Due to a flaw in the validation of input data, an attacker can exploit this to construct a malicious .BLF file and cause the system to crash.

Nicardo Narvaja, a researcher at Fortra, pointed out that although this is an attack that requires local access rights, its potential harm is still huge. An attacker can cause system instability and data loss by repeatedly inducing system crashes.

It is worth noting that this is not the first time that a serious vulnerability related to CLFS has appeared in the Windows system. Last year, Microsoft fixed a similar vulnerability (CVE-2023-36424) that could lead to local privilege escalation.

Source: https://www.top168.com/news/show-48606.html