Summary: A recently discovered vulnerability in Microsoft Windows, reported by ClearSky Cyber Security, is being actively exploited by the Chinese APT group Mustang Panda. The flaw affects the Windows Explorer GUI, making files extracted from RAR archives appear invisible, thus posing significant risks despite being classified as low-severity by Microsoft. The vulnerability allows attackers to conceal malicious files, facilitating stealthy execution and targeted cyber operations.
Affected: Microsoft Windows
Keypoints :
- Vulnerability allows files from compressed RAR archives to remain hidden in Windows Explorer.
- Mustang Panda uses this flaw to execute malicious payloads without detection.
- Despite low-severity classification, the vulnerability poses substantial risks when exploited in a wider attack chain.
Source: https://gbhackers.com/new-microsoft-windows-gui-0-day-vulnerability/