Major Rust Bug Allows Hacking of Windows Commands, Patches Released
- Critical Rust vulnerability allows malicious command injection on Windows
- Flaw stems from complex argument parsing rules of Windows Command Prompt
- Rust 1.77.1 and earlier affected; update to 1.77.2 released Tues to mitigate
- Vulnerability given 10/10 base severity score, tracked as CVE-2024-24576
- Issue also affects Erlang, Go, Python, Ruby; patches pending for Node.js, PHP