Cybersecurity researchers have disclosed particulars of a brand new vulnerability impacting Google’s Fast Share knowledge switch utility for Home windows that might be exploited to attain a denial-of-service (DoS) or ship arbitrary recordsdata to a goal’s machine with out their approval.
The flaw, tracked as CVE-2024-10668 (CVSS rating: 5.9), is a bypass for 2 of the ten shortcomings that have been initially disclosed by SafeBreach Labs in August 2024 underneath the identify QuickShell. It has been addressed in Fast Share for Home windows model 1.0.2002.2 following accountable disclosure in August 2024.
A consequence of those 10 vulnerabilities, collectively tracked as CVE-2024-38271 (CVSS rating: 5.9) and CVE-2024-38272 (CVSS rating: 7.1), was that they may have been normal into an exploit chain to acquire arbitrary code execution on Home windows hosts.
Fast Share (beforehand Close by Share) is a peer-to-peer file-sharing utility just like Apple AirDrop that permits customers to switch recordsdata, photographs, movies, and different paperwork between Android units, Chromebooks, and Home windows desktops and laptops in shut bodily proximity.
A follow-up evaluation by the cybersecurity firm discovered that two of the vulnerabilities weren’t mounted accurately, as soon as once more inflicting the appliance to crash or bypass the necessity for a recipient to simply accept the file switch request by instantly transmitting a file to the machine.
Particularly, the DoS bug might be triggered through the use of a file identify that begins with a unique invalid UTF8 continuation byte (e.g., “xc5xff”) as an alternative of a file identify that begins with a NULL terminator (“x00”).
Then again, the preliminary repair for the unauthorized file write vulnerability marked such transferred recordsdata as “unknown” and deleted them from the disk after the file switch session was full.
This, SafeBreach researcher Or Yair mentioned, might be circumvented by sending two totally different recordsdata in the identical session with the identical “payload ID,” inflicting the appliance to delete solely one among them, leaving the opposite intact within the Downloads folder.
“Whereas this analysis is particular to the Fast Share utility, we imagine the implications are related to the software program business as an entire and recommend that even when code is advanced, distributors ought to all the time deal with the actual root explanation for vulnerabilities that they repair,” Yair mentioned.
