RE: [FD] Executable installers are vulnerable^WEVIL (case 56): arbitrary code execution WITH escalation of privilege via rufus*.exe

Posted by Andrius Duksta on Aug 06Sorry, but the viable/practical attack vector on this one is practically non-existent. I really can’t see anyone
actually using this as a real-life attack. The circumstances required to succeed are such that if this attack works,
it’s waaay too late to blame Rufus as your system was obviously already compromised in other ways.

—–Original Message—–
From: Fulldisclosure [mailto:fulldisclosure-bounces () seclists org] On Behalf…