Remote code execution vulnerability in Windows WiFi driver CVE-2024-30078

OVERKILL · Jun 16, 2024

CVE Record | CVE
CVE-2024-30078 - Security Update Guide - Microsoft - Windows Wi-Fi Driver Remote Code Execution Vulnerability

Because this vulnerability exists in the driver itself, it doesn't matter how secure the network you are connected to is or if you are connected to a VPN or not. If you are in proximity to an attacker who knows how to leverage this exploit, you can have your device compromised.

This is one of those vulnerabilities that's so serious that Microsoft has released patches for OS's that are no longer being supported, like Server 2008, which of course means Windows 7 is vulnerable, but patches are not listed for it, or Windows 8/8.1.

If you are using Windows 10 or 11, update your devices immediately. If you are using Windows 7 or 8/8.1, you are most likely screwed (ahem @atikovi )

Lawnman23 · Jun 16, 2024

Any home users, join the dark side. We have stability, security and a lack of all things Microsoft

andrew_j · Jun 16, 2024

Shocker on windows…

OVERKILL · Jun 16, 2024

Lawnman23 said:
View attachment 225250

Any home users, join the dark side. We have stability, security and a lack of all things Microsoft

Of my 4x work laptops, only one of them is affected (runs 11), my Mac, FreeBSD and Kali boxes are obviously not affected, nor is my Mac desktop or my two Linux mini PC rigs.

Lawnman23 · Jun 16, 2024

OVERKILL said:
Of my 4x work laptops, only one of them is affected (runs 11), my Mac, FreeBSD and Kali boxes are obviously not affected, nor is my Mac desktop or my two Linux mini PC rigs.

After using Windows personally since 3.0 and supporting/administrating Windows endpoints for over 18 years in my IT career ranging from 2k to 10, I dropped all things Microsoft after I left the field.

I got into Linux in the early 2000's and eventually ran flavors of that on all my personal machines. Only in the last 5 - 8 years did I get into the Apple ecosystem with Macbook's, Mini's and all the other accessories/peripherals.

I don't miss anything Windows related these days and use nothing of their product line other than old OS's for retro gaming. And DOSBox...glorious DOSBox...yes, I know its not theirs directly but DOS so....

Jimmy9190 · Jun 16, 2024

I have been using Linux Mint since last March, it is working great, and I am real happy with it. Given all the recent shenanigans going on at MS I am very glad I made the switch. I don't miss MS at all.

atikovi · Jun 16, 2024

OVERKILL said:
If you are using Windows 10 or 11, update your devices immediately. If you are using Windows 7 or 8/8.1, you are most likely screwed (ahem @atikovi )

My W7 is a desktop not on Wifi. And my 10 laptop I can't even find right now.

redhat · Jun 16, 2024

Thanks for this. I’d be hitting WSUS hard if I was still doing IT.

Remote code execution vulnerability in Windows WiFi driver CVE-2024-30078

OVERKILL

$100 Site Donor 2021

Lawnman23

andrew_j

OVERKILL

$100 Site Donor 2021

Lawnman23

Jimmy9190

atikovi

redhat

Similar threads