Security vulnerability that allows bypassing and removing the screen capture yellow border

microsoft / Windows.UI.Composition-Win32-Samples

Windows.UI.Composition Win32 Samples

MIT License

459 stars 186 forks source link

Security vulnerability that allows bypassing and removing the screen capture yellow border #91

Closed gileli121 closed 2 years ago

gileli121 commented 2 years ago

Hello, I found a security bug that allows bypassing and removing the screen capture yellow border without any user permission. So the window gets captured without any border!

Is there a way to get paid for it? I want to report and in return get paid... Where I can start?

Thanks.

robmikh commented 2 years ago

https://www.microsoft.com/en-us/msrc/bounty

gileli121 commented 2 years ago

@robmikh What program I should choose? I looked for something like "Windows API" but did not found. What is the suitable program for this vulnerability report?

gileli121 commented 2 years ago

@robmikh Here is screenshot :)

Works great

gileli121 commented 2 years ago

@robmikh Reported: https://msrc.microsoft.com/report-detail/VULN-054714