Windows 10 zero-day exploit code released online

guest · May 22, 2019

Windows 10 zero-day exploit code released online
Security researcher 'SandboxEscaper' returns with new Windows LPE zero-day
May 22, 2019
https://www.zdnet.com/article/windows-10-zero-day-exploit-code-released-online/

A security researcher has published today demo exploit code on GitHub for a Windows 10 zero-day vulnerability.

LPE vulnerabilities can't be used to break into systems, but hackers can use them at later stages in their attacks to elevate their access on compromised hosts from low-privileged to admin-level accounts.
According to a description of the zero-day posted on GitHub, this vulnerability resides in the Windows Task Scheduler process.

When exploited, the vulnerability can elevate a hacker's low-privileged account to admin access, which, in turn, grants the intruder access over the entire system.
The zero-day has only been tested and confirmed to work on Windows 10 32-bit systems.
Click to expand...

However, ZDNet was told today that, in theory, the zero-day should also work, with some fine-tuning, on all Windows versions -- going back to XP and Server 2003 -- although this might require some testing and further confirmation over the coming days.
Click to expand...

mirimir · May 22, 2019

Great. Just great. Not.

JRViejo · May 22, 2019

SandboxEscaper has published 7 such exploits to date, 3 in the past 24 hours.
Click to expand...

Serial publisher of Windows 0-days drops exploits for 3 more unfixed flaws by Dan Goodin.

guest · May 23, 2019

Good luck stop that with WD lol

Rasheed187 · May 25, 2019

JRViejo said: ↑

Serial publisher of Windows 0-days drops exploits for 3 more unfixed flaws by Dan Goodin.
Click to expand...

Seems like with these kind of exploits you could bypass UAC? That's why I'm saying that UAC is highly overrated.

itman · May 25, 2019

For what it's worth, none of the pen tester's found vulnerabilities have ever been exploited except for this one: https://www.zdnet.com/article/recen...been-exploited-in-the-wild-for-almost-a-week/. This occurred because the person foolish posted the exploit code on GitHub.

guest · Jun 7, 2019

Windows 10 zero-day details published on GitHub
SandboxEscaper details new "ByeBear" zero-day impacting Windows 10 and Server 2019
June 7, 2019
https://www.zdnet.com/article/windows-10-zero-day-details-published-on-github/

A security researcher and exploit broker known as SandboxEscaper has published today details about a new zero-day that affects the Windows 10 and Windows Server 2019 operating systems.
The details have been published on GitHub, in the same account and repository where the researcher previously published details about eight other zero-days --listed below: [...]
NEW CVE-2019-0841 BYPASS
Today, SandboxEscaper published a second bypass for Microsoft's CVE-2019-0841 patches, for which she previously published a first bypass two weeks ago.

To be clear, this is yet another LPE (local privilege escalation) vulnerability, meaning hackers can't exploit this bug to break into systems, but they can use it to gain access to a set of files they wouldn't normally have control over.
The security researcher also promised to publish details about another zero-day in the coming days.
Click to expand...

Log in or Sign up

Windows 10 zero-day exploit code released online

guest Guest

mirimir Registered Member

JRViejo Super Moderator

guest Guest

Rasheed187 Registered Member

itman Registered Member

guest Guest

Log in or Sign up

Windows 10 zero-day exploit code released online

guest Guest

mirimir Registered Member

JRViejo Super Moderator

guest Guest

Rasheed187 Registered Member

itman Registered Member

guest Guest

Useful Searches