all InfoSec news
CVE-2023-24941: Microsoft Network File System Remote Code Execution
Zero Day Initiative - Blog www.zerodayinitiative.com
In this excerpt of a Trend Micro Vulnerability Research Service vulnerability report, Quinton Crist, Guy Lederfein, and Lucas Miller of the Trend Micro Research Team detail a recently patched remote code execution vulnerability in the Microsoft Network File Service (NFS). This bug was originally discovered by Wei in Kunlun Lab with Cyber KunLun. The vulnerability is triggered when handling incoming NFSv4.1 calls containing utf8strings when the server is low on memory. A remote, unauthenticated attacker could exploit this vulnerability …
blog post bug code code execution cve cve-2023-24941 cyber file file system lab micro microsoft miller network nfs remote code remote code execution report research service system team trend trend micro vulnerability vulnerability research