Skip to content

Instantly share code, notes, and snippets.

@dgl
Last active September 5, 2023 05:03
Show Gist options
  • Save dgl/081cf503dc635df39d844e058a6d4c88 to your computer and use it in GitHub Desktop.
Save dgl/081cf503dc635df39d844e058a6d4c88 to your computer and use it in GitHub Desktop.
This is here to provide the needed details for ConEmu vulnerability CVE-2023-39150.
Product: "ConEmu-Maximus5", aka. ConEmu, https://conemu.github.io/
Vendor: Maksim Moisiuk
Fixed version: >= 230724 (released 24 July 2023).
Links:
* https://conemu.github.io/blog/2023/07/24/Build-230724.html
* https://github.com/cmderdev/cmder/releases/tag/v1.3.24
Vulnerability: A variant of CVE-2003-0063 (!), title reporting can lead to remote code execution, with an incomplete fix in the previous CVE (CVE-2022-46387).
Credit: David Leadbeater
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment