John L., a Twitter user, was the first to point out the vulnerability. He noted that this happens “when a special name is opened in any folder.”
CERT / CC vulnerability analyst Will Dormann later checked the error and added that it occurs when opening a folder or file link, including ISO, VHD or VHDX, unzipping a Zip file, opening an HTML file without MoTW and more.
This can be especially annoying if the code is embedded in a legitimate program link.
The error automatically corrupts the MFT (master file table) NTFS. Sometimes Windows will ask you to restart your computer so that it can repair your hard drive. But Dormann says it’s not always like that, sometimes users will have to do a manual repair.
Microsoft is aware of the problem and has already reported that it is being fixed. At the same time, the manufacturer urges consumers to be careful and to follow proper cyber hygiene.
“We are aware of this problem and will provide an update in a future release. The use of this technique is based on social engineering and, as always, we encourage our customers to practice good habits online, including caution in the time to open or accept unknown files ”.
Dormann remains pessimistic about the solution presented by Microsoft, saying he reported two years ago a similar NTFS error that has not yet been fixed. He said he would not yet reveal the specific name of the case. He wants to give Microsoft a chance to fix the problem first.