Microsoft Windows Contact File / Remote Code Execution (Resurrected) CVE-2022-44666

Read Time:21 Second

Posted by hyp3rlinx on Feb 27

[-] Microsoft Windows Contact file / Remote Code Execution (Resurrected
2022) / CVE-2022-44666

[+] John Page (aka hyp3rlinx)
[+] twitter.com/hyp3rlinx
[+] ISR: ApparitionSec

Back in 2018 I discovered three related Windows remote code execution
vulnerabilities affecting both VCF and Contact files. They were purchased
by Trend Micro Zero Day Initiative (@thezdi) from me and received candidate
identifiers ZDI-CAN-6920 and ZDI-CAN-7591. Microsoft…

perl-Plack-Middleware-Session-0.36-1.fc42

FEDORA-2025-ca07c36a0a Packages in this update: perl-Plack-Middleware-Session-0.36-1.fc42 Update description: This update upgrade the package to version 0.36. This version fixes CVE-2025-40923...

September 7, 2025

perl-Catalyst-Plugin-Session-0.44-1.fc42

FEDORA-2025-90d5989bee Packages in this update: perl-Catalyst-Plugin-Session-0.44-1.fc42 Update description: This update upgrade the package to version 0.44. This version fixes CVE-2025-40924...

September 7, 2025

perl-Catalyst-Authentication-Credential-HTTP-1.019-1.fc42

FEDORA-2025-d72429a1f8 Packages in this update: perl-Catalyst-Authentication-Credential-HTTP-1.019-1.fc42 Update description: This update upgrade the package to version 1.019. This version fixes CVE-2025-40920...

September 7, 2025

DSA-5994-1 shibboleth-sp – security update

Florian Stuhlmann discovered a SQL vulnerability in the ODBC plugin in the Shibboleth Service Provider which may result in information...

September 7, 2025

libopenmpt-0.8.3-1.el10_0

FEDORA-EPEL-2025-dc43510de4 Packages in this update: libopenmpt-0.8.3-1.el10_0 Update description: libopenmpt 0.8.3 (2025-09-06) [Bug] libopenmpt is now compatible with most non-standard builds...

September 6, 2025

libopenmpt-0.8.3-1.el10_2

FEDORA-EPEL-2025-3f414a0955 Packages in this update: libopenmpt-0.8.3-1.el10_2 Update description: libopenmpt 0.8.3 (2025-09-06) [Bug] libopenmpt is now compatible with most non-standard builds...

September 6, 2025

GOP Cries Censorship Over Spam Filters That Work

Friday Squid Blogging: The Origin and Propagation of Squid

My Latest Book: Rewiring Democracy

Bridgestone Confirms “Limited Cyber Incident” Impacting Facilities in North America

Germany charges hacker with Rosneft cyberattack in latest wake-up call for critical infrastructure

Parents warned that robot toys spied on children’s location without consent

South Carolina School District Data Breach Affects 31,000 People

macOS Stealer Campaign Uses “Cracked” App Lures to Bypass Apple Security

GPT-4o-mini Falls for Psychological Manipulation

Microsoft Windows Contact File / Remote Code Execution (Resurrected) CVE-2022-44666

perl-Plack-Middleware-Session-0.36-1.fc42

perl-Catalyst-Plugin-Session-0.44-1.fc42

perl-Catalyst-Authentication-Credential-HTTP-1.019-1.fc42

DSA-5994-1 shibboleth-sp – security update

libopenmpt-0.8.3-1.el10_0

libopenmpt-0.8.3-1.el10_2