Comment by rtpg

6 hours ago

This is super bad right? Like anybody who has this running will be vulnerable to a super basic HTTP redirect -> installer running on their machine attack, right? And on top of that it's for something that is likely installed on _so many_ machines, right?

I don't think I've ever seen something this exploitable that is so prevalent. Like couldn't you just sit in an airport and open up a wifi hotspot and almost immediately own anyone with ATI graphics?

4 comments

rtpg

Reply
dbtablesorrows  1 hour ago

Who would connect to unknown person's hotspot?

But it seems pretty trivial for some bad actor at local ISP.

  • hpdigidrifter  21 minutes ago

    This is oh sweet summer child stuff.

    Have you ever gone to a crowded public place and setup an open hotspot?

    • dbtablesorrows  10 minutes ago

      Ah I think I never had to do connect to a public open hotspot because by the time I grew up 4G and then 5G internet were commonplace.

hulitu  1 hour ago

> Like couldn't you just sit in an airport and open up a wifi hotspot and almost immediately own anyone with ATI graphics?

Some of us do not enable automatic updates (automatic updates are the peak of stupidity since Win98 era). And, when you sit in an airport, you don't update all your programs.