1. Home
  2. Popular
Log in to post
  • donhoD

    Notepad++ release 8.9.6.1

    Pinned Announcements
    19
    1 Votes
    19 Posts
    381 Views
    xomxX
    @donho said: Fix arbitrary code execution vulnerability via config.xml (CVE-2026-48778 ). Fix arbitrary code execution vulnerability via shortcuts.xml (CVE-2026-48778 ). IMO this is not a security vulnerability. Abuse of N++, I’d say. Let’s see the published attack vectors: Direct write to %APPDATA%\Notepad++\config.xml (same user privilege) Malicious .lnk shortcut with -settingsDir= pointing to attacker-controlled directory Archive extraction to AppData via social engineering If someone can do arbitrary writes to my Windows user profile (or persuades me to do it for him via that mentioned social engineering), then such an attacker can easily do also other mischievous things, e.g. redirecting my user environment variables like %PATH%, where I can have paths to executables… So if this is marked as Arbitrary Code Execution CVE, then it’s like patching up a small hole in a dam that just burst. Cloud sync poisoning (NPP supports cloud choice path, Parameters.cpp:1386) If someone gets into my cloud, then I have a bigger problem than a mischievous modification of some path. Ditto the shortcuts.xml stuff. I agree with @peterjones , I also like to launch any executable from the N++. And I like to point my shortcuts to any executable too. @Coises said: Notepad++ is installed on a corporate-managed workstation which is fairly locked down. Users’ ability to execute programs is restricted; they cannot execute an arbitrary program from an arbitrary directory (so they can’t install their own programs, even as portables), but they can execute Notepad++. Does this vulnerability mean that a user, by manipulating the shortcuts file (and responding OK to the prompt in 8.9.6.1), would be able to execute an arbitrary program from an arbitrary directory (as it would be executing under the control of Notepad++, which has already been whitelisted)? No. If an app is not on a whitelist (realized e.g. by Windows App Control for Business), it should not be executed (even from a whitelisted app). Or would there still be a UAC prompt that the user could not satisfy? This is other thing. UAC gets in the way whenever an action is required to be performed with higher than the current privileges. So if an attacker creates e.g. that config.xml “commandLineInterpreter” redirection to his “mycmd.exe”, UAC shows up e.g. if that mycmd.exe has a manifest within with higher execution level requested.
  • guy038G

    Word frequency list

    Blogs
    2
    0 Votes
    2 Posts
    61 Views
    guy038G
    Hi, All, Second and last post regarding the Word_Frequency macro ! Now, a simple example : Open the change.log file of the last release v8.9.6 Do a stream selection of all the points of the v8.9.6 release, ONLY. So, the lines below : 1. Fix vulnerability (CVE-2026-46710) of v8.9.4 & v8.9.5 installer. 2. Fix x86 installer regression of not showing installation entry in Control Panel's "Unstall a program". 3. Fix x86 installer regression where context menu not installed or uninstalled correctly. 4. Fix UAC prompt display regression (“Notepad++ installer” instead of “Notepad++”) for Notepad++ v8.9.5. 5. Fix incorrect bevaviour when saving dirty read-only files. 6. Fix regression where saving a UDL file removed XML declaration. Run the Word_Frequency macro. You should get, at once, this OUTPUY text : 1 : 1 2 : 1 3 : 1 4 : 2 5 : 3 6 : 1 9 : 3 CVE-2026-46710 : 1 Control : 1 Fix : 6 Notepad : 3 Panel's : 1 UAC : 1 UDL : 1 Unstall : 1 XML : 1 a : 2 bevaviour : 1 context : 1 correctly : 1 declaration : 1 dirty : 1 display : 1 entry : 1 file : 1 files : 1 for : 1 in : 1 incorrect : 1 installation : 1 installed : 1 installer : 4 instead : 1 menu : 1 not : 2 of : 3 or : 1 program : 1 prompt : 1 read-only : 1 regression : 4 removed : 1 saving : 2 showing : 1 uninstalled : 1 v8 : 3 vulnerability : 1 when : 1 where : 2 x86 : 2 If you prefer a ordered list ignoring the case, simply insert the regex replacement, below <Action type="3" message="1700" wParam="0" lParam="0" sParam="" /> <Action type="3" message="1601" wParam="0" lParam="0" sParam="(?x-i) \u+" /> <Action type="3" message="1625" wParam="0" lParam="2" sParam="" /> <Action type="3" message="1602" wParam="0" lParam="0" sParam="\L$0" /> <Action type="3" message="1702" wParam="0" lParam="640" sParam="" /> <Action type="3" message="1701" wParam="0" lParam="1609" sParam="" /> Right before the sort line : <Action type="2" message="0" wParam="42059" lParam="0" sParam="" /> Here is the trick to get the right number of occurrences when > 99,999. Search for any remaining ¶ character with the regex ¶+ . Let’s suppose you have this line : the : ¶¶¶¶¶¶¶¶¶¶¶¶¶¶¶¶¶¶¶¶¶¶¶97371 As the number of consecutive ¶ is 23, the exact of occurrences of the word the is : 23 × 10000 + 97,371 i.e. 327,371 occurrences Remember that the first thing to do, before running the Word_Frequency macro, is to select part or all current file contents ! Best Regards, guy038
  • donhoD

    Notepad++ release 8.9.6

    Announcements
    2
    3 Votes
    2 Posts
    2k Views
    PeterJonesP
    @donho , https://community.notepad-plus-plus.org/topic/27545/inability-to-save-file-to-onedrive-with-8.9.6-version-of-notepad indicates that there might be a regression with the ability to save to OneDrive…
  • smcclosrS

    Inability to save file to OneDrive with 8.9.6 version of Notepad++

    Help wanted · · · – – – · · ·
    3
    0 Votes
    3 Posts
    174 Views
    smcclosrS
    @PeterJones It is a new behavior / issue with 8.9.6. I rolled back to 8.9.5, and all my problems went away.
  • rednoise0R

    Jump List not being added to

    Help wanted · · · – – – · · ·
    1
    0 Votes
    1 Posts
    43 Views
    No one has replied