Yet another zero day (sort of) in Windows “search URL” handling

Just when the dust started to settle on the funny name Follina vulnerability…

…came another zero-day Windows security flaw.

Kind of.

We’re not convinced this one is as dramatic or as dangerous as some of the titles seem to suggest (which is why we’ve carefully added the words “somehow” above), but we’re not surprised that researchers are currently looking for new ways to abuse the many types of proprietary URLs in Windows.