Home / News / When is a remote code execution bug in Teams not an RCE? When Microsoft says it is, flaw-finder claims

When is a remote code execution bug in Teams not an RCE? When Microsoft says it is, flaw-finder claims

When is a remote code execution bug in Teams not an RCE? When Microsoft says it is, flaw-finder claims December 7, 2020 News Feed

News

‘Zero-click, wormable, cross-platform’ vuln deemed ‘important, spoofing’ rather than, say, ‘aaargh!’

At some point since August, Microsoft quietly fixed a cross-site scripting (XSS) bug in its Teams web app that opened the door to a serious remote code execution (RCE) vulnerability in the Linux, macOS, and Windows desktop versions of its Teams collaboration app.…

Source:: Register

SysLog.gr

When is a remote code execution bug in Teams not an RCE? When Microsoft says it is, flaw-finder claims

‘Zero-click, wormable, cross-platform’ vuln deemed ‘important, spoofing’ rather than, say, ‘aaargh!’

Categories

Archives