They finally did it. Microsoft has successfully over-engineered a text editor into a threat vector.
This CVE is an 8.8 severity RCE in Notepad of all things.
Apparently, the “innovation” of adding markdown support came with the ability of launching unverified protocols that load and execute remote files.
We have reached a point where the simple act of opening a .md file in a native utility can compromise your system.
Yes. Metapad is too dumb for that shit. By design.
It’s only barely smart enough to be better than Notepad.
It’s not smart enough to do anything dumb.
Its free, extremely mature, and you already know how to use it.
Metapad is a feature-for-feature drop-in replacement for Notepad.
I love this. Amazing quote
Thanks! I’ll check it out 🍻