Specialists in cybersecurity detected an error that allows hackers run malware code from Evernote.
에이[,dropcap]결과, intruders can use specially created URI in a note that would lead to the attack. ...을 통하여 파일:/// link they offer user to open any malware file, 예를 들면, “../../../../malware.app“.Such vulnerabilities united under the term “path traversal".
While Evernote provides technical opportunity to share notes, hackers can use this vulnerability and send malware notes in .enex format to supposed victims.
Vulnerability touched Apple laptops with macOS. 재미있게, on other platforms program does not endanger user’s confidentiality.
Recently issue traced with identification number CVE-2019-10038, and patch released for Evernote versions 7.10 Beta and 7.9.1. GA on macOS.
Correction is already working. 이제 의심스러운 링크를 열려고 시도 할 때 발생하는 알림으로 보입니다.. 비슷한 오류를 추가하는 것이 중요합니다 녹이다 Electronic Arts Origin 서비스.
출처: www.inputzero.io