Windows 10 Disk Cleanup Utility Abused to Bypass UAC

Discussion in 'malware problems & news' started by stapp, Jul 26, 2016.

  1. stapp

    stapp Global Moderator

    Joined:
    Jan 12, 2006
    Posts:
    23,870
    Location:
    UK
  2. guest

    guest Guest

    Just disable Diskcleanup as scheduled task as i did long time ago.
     
  3. VoodooShield

    VoodooShield Registered Member

    Joined:
    Dec 9, 2011
    Posts:
    5,881
    Location:
    United States
    Very interesting, thank you stapp! Good old dismhost... gotta love it ;).
     
  4. ichito

    ichito Registered Member

    Joined:
    Jan 14, 2011
    Posts:
    1,997
    Location:
    Poland - Cracow
    https://enigma0x3.net/2016/07/22/bypassing-uac-on-windows-10-using-disk-cleanup/
     
  5. test

    test Registered Member

    Joined:
    Feb 15, 2010
    Posts:
    499
    Location:
    italy
    So, UAC maxed...and SUA for everyday tasks.

    Nothing new :) (except this shiny and simple technique :thumb:)


    IMO
     
  6. test

    test Registered Member

    Joined:
    Feb 15, 2010
    Posts:
    499
    Location:
    italy
    from UACMe project by EP_X0FF ( :thumb: , truly a :ninja: in Computer science)

    https://github.com/hfiref0x/UACME
     
  7. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    https://threatpost.com/latest-windows-uac-bypass-permits-code-execution
     
  8. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    17,546
    Location:
    The Netherlands
  9. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    My solution is to turn it to always notify :)
    ... and also to run under SUA...
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.