bio.sh Posted July 16 Report Posted July 16 Long story short, am raportat, mi-au raspuns asa, aparent nu le pasa, acelasi bug in acelasi serviciu in 2019 era folosit pentru ransomware deployment, aparent in 2024 avem aceeasi problema cu acelasi serviciu, doar ca astazi Apple nu mai vede problema. We’re unable to identify a security issue in your report. We reviewed your report and were unable to identify a security issue. If you have new information that you didn’t include in your report, providing it now may allow us to review your report further. C:\>wmic service get name,displayname,pathname,startmode |findstr /i "auto" |findstr /i /v "c:\windows\\" |findstr /i /v """ Bonjour Service Bonjour Service C:\Program Files\Blizzard\Bonjour Service\mDNSResponder.exe Auto C:\Users\eu>sc qc "Bonjour Service" [SC] QueryServiceConfig SUCCESS SERVICE_NAME: Bonjour Service TYPE : 20 WIN32_SHARE_PROCESS START_TYPE : 2 AUTO_START ERROR_CONTROL : 1 NORMAL BINARY_PATH_NAME : C:\Program Files\Blizzard\Bonjour Service\mDNSResponder.exe LOAD_ORDER_GROUP : TAG : 0 DISPLAY_NAME : Bonjour Service DEPENDENCIES : Tcpip SERVICE_START_NAME : LocalSystem C:\>systeminfo Host Name: DESKTOP-HFBJOBG OS Name: Microsoft Windows 10 Home OS Version: 10.0.19045 N/A Build 19045 PS C:\Program Files\Blizzard\Bonjour Service> powershell -command "(Get-Command .\mDNSResponder.exe).FileVersionInfo.FileVersion" >> 3,0,0,10 Quote
bio.sh Posted July 16 Author Report Posted July 16 https://thehackernews.com/2019/10/apple-bonjour-ransomware.html Quote
dimss Posted July 16 Report Posted July 16 Mai bine treci pe Linux si ai rezolvat problema Cea mai buna parte este ca daca gasesti ceva in Linux, o poti raporta, fixa... tot ce vrei. Nu ca la Micro$hit sau Merele stricate. Quote
bio.sh Posted July 16 Author Report Posted July 16 (edited) Problema nu este la mine, ca pot sa adaug cateva quotes si rezolv problema sau il sterg , ce ma intrigat e cum abordeaza Apple problema, mai ales dupa ce se creeaza un precedent, in 2019 era considerat 0day, in 2024 nobody cares, si iti inchide ticketul. "We can't find a security issue here" ... mDNSResponder.exe fucking up people since 2007 Edited July 16 by bio.sh Quote
dimss Posted July 16 Report Posted July 16 Nu stii abordarea lor? This is not a bug, it's a feature Nu vor misca nimic pana nu costa... deci trebuie sa apara vreun incident cu Bonjour ca vector de atac... sa vezi ce se vor sesiza atunci, ca doar le afecteaza imaginea. Quote
bio.sh Posted July 16 Author Report Posted July 16 (edited) Bonjour is a service discovery protocol used by various software applications for networked device and service discovery. Several software applications and devices install Bonjour services on your PC, typically to facilitate local network communication and services. Here is a list of some common software that installs Bonjour: Apple Software: iTunes iCloud Safari QuickTime Adobe Software: Adobe Creative Suite (Photoshop, Illustrator, InDesign, etc.) Adobe Acrobat Adobe Premiere Pro Other Software: Skype Pidgin (with the Bonjour plugin) VMWare Fusion (for Mac) Autodesk applications (such as AutoCAD) Parallels Desktop (for Mac) MySQL Workbench Network and Media Software: Spotify Plex Media Server Kodi (formerly XBMC) HandBrake Printer and Scanner Software: HP Printer Drivers and Software Epson Printer Drivers and Software Canon Printer Drivers and Software Backup and Sync Software: Dropbox (for LAN sync) Synology Assistant (for Synology NAS devices) Development and Database Tools: Xcode (on macOS, includes Bonjour for network services) PostgreSQL (with some configurations) Home Automation and Smart Devices: Philips Hue Nest devices Logitech Harmony Collaboration and Communication Tools: TeamViewer (for LAN connections) Zoom (for LAN discovery of devices) Game and Entertainment Software: Steam (for in-home streaming) Edited July 16 by bio.sh Quote