Microsoft Windows Notepad App Command Injection Vulnerability Allowing Remote Code Execution
Vulnerability
A command injection vulnerability has been identified in the Windows Notepad App. This issue allows an unauthorized attacker to execute code remotely by exploiting improper neutralization of special elements used in commands. The vulnerability affects users who open Markdown files containing malicious links, which can trigger the execution of remote files via unverified protocols. The executed code runs in the context of the user who opened the file, potentially leading to unauthorized actions with the user's permissions.
Impact
Exploitation of this vulnerability allows for remote code execution on the affected system.
Reproduction
To reproduce this vulnerability, a user must open a Markdown file in the Windows Notepad App that contains a malicious link. When the link is clicked, the Notepad App may execute remote files by launching unverified protocols, depending on how the link is crafted.
Remediation
Users can download the security update for Windows Notepad from the Microsoft Store.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.