[News] ThemeBleed exploit is another reason to patch Windows quickly
Summary
- ThemeBleed exploit is a new vulnerability in Windows Themes that allows remote code execution (RCE).
- The vulnerability was discovered by Gabe Kirkpatrick and assigned the CVE identifier CVE-2023-38146.
- It is a race condition vulnerability that can be triggered by opening a specially crafted .theme file.
- Microsoft has released a patch for the vulnerability in the September 2023 Patch Tuesday updates.
- However, the patch does not fix the more fundamental problem in the verification procedure of .msstyles files, nor does it add MOTW warnings to .themepack files.
- The researcher notes that the vulnerability appears to be only present in Windows 11.
![](https://kbin.social/media/cache/resolve/entry_thumb/ab/31/ab31a21be3dd5b320f16f818fb8d3c0bd3623d82f04c6d211b4b7571c5486a1f.jpg)
Add comment