RegalBeagle @[email protected]

every time some small business faggot comes out talking about how they can't get american workers to show up for "high paying jobs", as soon as you scratch the surface it turns out their business model is total dogshit and they refuse to change it

So this "CVSS 9.9" "unauthenticated RCE vs all GNU/Linux systems (plus others)" thing...

- Does NOT affect all GNU/Linux systems.
- Is not CVSS 9.9. I put it at a 6.3

It also requires:
1) The victim system has no active firewall to block incoming connections.
2) A user on the victim system must print something to a printer that mysteriously appears on the system that has never been there before.

If these two things happen, then command execution can happen as the "lp" user.

<yawn>

We get it. You found a vulnerability.
Lying about it to try to stir up interest in it is not appreciated by anybody who takes themselves seriously in this industry.

CVE-2024-47176, CVE-2024-47076, CVE-2024-47175, and CVE-2024-47177 have been assigned.

https://www.evilsocket.net/2024/09/26/Attacking-UNIX-systems-via-CUPS-Part-I/

Cozy season is coming soon...

@lanodan @sun

Asians are more compatable with whites than negroids

https://www.minds.com/newsfeed/1685644939939024915

Forget skynet or the matrix. Apparently, whenever AI is allowed to develop freely, it ends up wanting to save us.

Just in time for #FreeCAD 1.0, a #FreeGrid workbench is now available!

TL;DR: Alleged unauthenticated RCE on "all GNU/Linux systems (plus others)"

Now would be a great time to:

- Get all your systems on orchestration
- Shut down all non-critical endpoints
- Prepare yourself to speedrun patches, potentially requiring a reboot, across your entire infrastructure
- Stock up on popcorn

https://x.com/evilsocket/status/1838169889330135132

Turns out the Winamp source code release has leaked not just the header files from Dolby but also the entirety of the SHOUTcast DNAS server source code, as well as their codesign keys for windows

@Wormwood