Internet Shortcut Files Security Feature Bypass Vulnerability - CVE-2024-21412ID: oval:org.secpod.oval:def:98004 | Date: (C)2024-02-14 (M)2024-04-17 |
Class: VULNERABILITY | Family: windows |
Internet Shortcut Files Security Feature Bypass Vulnerability. An attacker must send the user a malicious file and convince them to open it. An unauthenticated attacker could send the targeted user a specially crafted file that is designed to bypass displayed security checks. However, the attacker would have no way to force a user to view the attacker-controlled content. Instead, the attacker would have to convince them to take action by clicking on the file link.
Platform: |
Microsoft Windows 10 |
Microsoft Windows 11 |
Microsoft Windows Server 2019 |
Microsoft Windows Server 2022 |
Microsoft Windows Server |