body { -ms-overflow-style: scrollbar; overflow-y: scroll; overscroll-behavior-y: none; } .errorContainer { background-color: #FFF; color: #0F1419; max-width: 600px; margin: 0 auto; padding: 10%; font-family: Helvetica, sans-serif; font-size: 16px; } .errorButton { margin: 3em 0; } .errorButton a { background: #1DA1F2; border-radius: 2.5em; color: white; padding: 1em 2em; text-decoration: none; } .errorButton a:hover, .errorButton a:focus { background: rgb(26, 145, 218); } .errorFooter { color: #657786; font-size: 80%; line-height: 1.5; padding: 1em 0; } .errorFooter a, .errorFooter a:visited { color: #657786; text-decoration: none; padding-right: 1em; } .errorFooter a:hover, .errorFooter a:active { text-decoration: underline; } #placeholder, #react-root { display: none !important; } body { background-color: #FFF !important; }

JavaScript is not available.

We’ve detected that JavaScript is disabled in this browser. Please enable JavaScript or switch to a supported browser to continue using twitter.com. You can see a list of supported browsers in our Help Center.

Terms of Service Privacy Policy Cookie Policy Imprint Ads info © 2023 X Corp.

Conversation

NTFS VULNERABILITY CRITICALITY UNDERESTIMATED - There is a specially nasty vulnerability in NTFS right now. Triggerable by opening special crafted name in any folder anywhere.' The vulnerability will instant pop up complaining about yuor harddrive is corrupted when path is opened

1:38 PM · Jan 9, 2021

162

Bookmarks

The vulnerability can be remotely triggered if having any kind of service allowing file opens of specific names to happen. Its embeddable in HTML, sharred folders etc. Until now only consequence have been running chkdsk on boot- but now the MFT have corrupted

10

35

159

Its triggerable as a low privileged user- no special credentials or write permissions are needed.

1

13

76

To be clear, this isn't a vulnerability in the NTFS spec, but a vulnerability in the Windows NTFS driver. The distinction is subtle but important.

1

3

65

yarh - idunno, isnt it kinda obvious? Dont think something like this would pass peer review. In case of opening the stream with read access in unprivileged security context the MFT must corrupt random entries.

1

11

Show replies

punished justin

Just use ext4 l0l

3

7

when it comes to corruption and (dr/w)ifes there is only one way to go......

3

1

Show replies

@Luana@tech.lgbt

What’s the name?

1

well - 99% of the time it dosnt do anything, it lies, makes people fear corruption and has potential to cause disaster. what about politics?

6

This sounds ugly. I wonder if you modified syzkaller to work on some winapi calls like createfile if you could generate some crazy crashes 🤔

1

2

sure- go through my tweet history, youll find around 6 ways to bsod with that. I dont do machine fuzzing though, only spazmo (C) fuzzing

4