0Day of Windows 10 is freely available on Twitter

0Day on Twitter! Not in underground forums, or in Darkweb, but freely on Twitter and on Github (now owned by Microsoft).

A big surprise awaited Microsoft when it announced that a Windows zero-day vulnerability is released freely on Twitter. Vulnerability allows the attacker to obtain system privileges on the victim's computer. 0Day

The tweet came from the account @SandboxEscaper. As you can see in the picture below, the researcher also published a link to Github that contained all the necessary for a successful PoC.

Of course, the Git link does not exist anymore, and it is a surprise that there is still a Twitter announcement.

CERT researcher Phil Dormann, confirmed the error on Twitter and explained that he operated in a “fully informed με Windows 10 στα 64bit.”

A publication in CERT provides more details on vulnerability, but points out that there is still some information about the affected systems.

Microsoft, for its part, told The Registry that it is preparing a patch that will probably be released in the next Patch , that is, on September 11th. The company rather strictly adheres to the schedule of its employees and does not allow overtime even if millions of systems are at risk.

It seems that all versions of Windows 10 are affected, whether or not they have been updated. Older versions of Windows (Windows 7 and Windows 8.1) do not appear to be affected by this vulnerability.

Regarding the security of your system and until Microsoft decides to release the update to close his gap (by the book on the next Patch Tuesday), it would be best to avoid it and applications and files from untrusted sources.

_________________________________

iGuRu.gr The Best Technology Site in Greeceggns

Get the best viral stories straight into your inbox!















Written by giorgos

George still wonders what he's doing here ...

2 Comments

Leave a Reply

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).