{"id":532039,"date":"2024-04-10T15:04:01","date_gmt":"2024-04-10T13:04:01","guid":{"rendered":"https:\/\/mybroadband.co.za\/news\/?p=532039"},"modified":"2024-04-10T15:04:01","modified_gmt":"2024-04-10T13:04:01","slug":"major-security-flaw-in-rust-on-windows","status":"publish","type":"post","link":"https:\/\/mybroadband.co.za\/news\/software\/532039-major-security-flaw-in-rust-on-windows.html","title":{"rendered":"Major security flaw in Rust on Windows"},"content":{"rendered":"<p>A critical security flaw within the standard library of the Rust programming language has been discovered.<\/p>\n<p>It allows attackers to exploit a command injection vulnerability on Windows.<\/p>\n<p>This concerns Rust\u2019s ability to allow programs to run command-line utilities with options passed as arguments to the command.<\/p>\n<p>Rust\u2019s library for executing command-line programs does not properly escape arguments.<\/p>\n<p>This could enable attackers to run arbitrary commands by passing specifically crafted arguments.<\/p>\n<p>Therefore, unauthenticated attackers could execute any program on a machine without user interaction \u2014 with very little complexity.<\/p>\n<p>Microsoft-owned version management system GitHub has given critical severity status to this vulnerability with a <strong><a href=\"https:\/\/nvd.nist.gov\/vuln-metrics\/cvss\/v3-calculator?name=CVE-2024-24576&amp;vector=AV:N\/AC:L\/PR:N\/UI:N\/S:C\/C:H\/I:H\/A:H&amp;version=3.1&amp;source=GitHub,%20Inc.\" target=\"_blank\" rel=\"noopener\">maximum CVSS base score<\/a><\/strong> of 10\/10.<\/p>\n<p>\u201cThe severity of this vulnerability is critical if you are invoking batch files on Windows with untrusted arguments. No other platform or use is affected,\u201d The Rust Security Response Working Group said in a <strong><a href=\"https:\/\/blog.rust-lang.org\/2024\/04\/09\/cve-2024-24576.html\" target=\"_blank\" rel=\"noopener\">blog post<\/a><\/strong>.<\/p>\n<p>\u201cDue to the complexity of cmd.exe, we didn&#8217;t identify a solution that would correctly escape arguments in all cases. To maintain our API guarantees, we improved the robustness of the escaping code and changed the Command API to return an InvalidInput error when it cannot safely escape an argument.\u201d<\/p>\n<p>An update to the programming language, Rust 1.77.2, will introduce a security patch to the standard library to resolve the issue.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p dir=\"ltr\" lang=\"en\">Today, Rust 1.77.2 will be released with a critical security patch to the standard library for those on Windows using the Command API to invoke batch files with untrusted arguments. No other platform or use is affected.<\/p>\n<p>See the announcement for details: <a href=\"https:\/\/t.co\/uaLYGDjc2r\">https:\/\/t.co\/uaLYGDjc2r<\/a><\/p>\n<p>\u2014 Rust Language (@rustlang) <a href=\"https:\/\/twitter.com\/rustlang\/status\/1777745198199554460?ref_src=twsrc%5Etfw\">April 9, 2024<\/a><\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n","protected":false},"excerpt":{"rendered":"<p>A major security flaw identified within the Rust standard library could be used to run arbitrary commands on Windows. <\/p>\n","protected":false},"author":341175,"featured_media":532047,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_sma_x_autopost_status":"idle","_sma_x_autopost_error":"","_sma_x_post_id":"","_sma_x_attempts":0,"footnotes":""},"categories":[27,16],"tags":[5276,11253,1565,93583,93585,807],"class_list":["post-532039","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-security","category-software","tag-cyber-security","tag-github","tag-hacker","tag-rust-programming-language","tag-the-rust-security-response-working-group","tag-windows"],"_links":{"self":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts\/532039"}],"collection":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/users\/341175"}],"replies":[{"embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/comments?post=532039"}],"version-history":[{"count":1,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts\/532039\/revisions"}],"predecessor-version":[{"id":532049,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts\/532039\/revisions\/532049"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/media\/532047"}],"wp:attachment":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/media?parent=532039"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/categories?post=532039"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/tags?post=532039"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}