CVE-2024-43461

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to the fixed version

Description The issue is related to a Windows MSHTML platform spoofing vulnerability, which allows attackers to execute arbitrary code remotely. This vulnerability has been exploited by the Void Banshee APT group in zero-day attacks, delivering malicious HTML Application (HTA) files camouflaged as PDF documents to spread the Atlantida information stealer. The attackers used a technique involving 26 Braille space characters to hide the extension of the malicious HTA file. The vulnerability affects all supported Windows versions and has been addressed by Microsoft in their July and September 2024 updates.

Recommendations To resolve the issue, apply the July and September 2024 updates to fully protect against exploits targeting this vulnerability. Ensure your operating system is up-to-date to protect against threats related to this vulnerability.