Vulnerability 0day in the Windows 10 Sandbox

A researcher ανακάλυψε μια νέα ευπάθεια 0day στις περισσότερες εκδόσεις των 10, which allows files to be created in operating system folders.

Exploitation of the flaw is important and attackers can use it to advance their attack after the initial of the target host, although it only works on machines with Hyper-V.

Researcher Jonas Lykkegaard published a tweet last week showing how a non-privileged user can create an arbitrary in the “system32” folder, which contains important files for the Windows operating system and installed software.

However, this only works if Hyper-V is already active, which limits the scope of the targets, as the option is disabled by default and is present in Windows 10 Pro, Enterprise and .

Hyper-V is Microsoft's solution for creating virtual machines (VMs) in Windows 10. Depending on the physical resources available on the host computer, it can run at least three .

The average user may never use this feature, but they may run Windows , an isolated environment for running programs or loading unreliable websites without risking infecting the normal Windows operating system.

Microsoft introduced it Windows Sandbox with the May 2019 Update, in Windows 10 of version 1903. This feature automatically activates Hyper-V.

To show the vulnerability, Lykkegaard created a blank file in system32 called phoneinfo.dll. Making changes to this folder requires increased permissions, but these restrictions "go for a walk" when Hyper-V is enabled.

So since the creator of the file is also the owner of the computer, an attacker can use it to place malicious code that will run with elevated privileges when needed.

CERT CC vulnerability analyst Will Dormann confirmed that the vulnerability exists and that exploiting it literally requires no effort from perpetrator to victim.

While this vulnerability is easy to exploit, there are more dangerous issues in Windows 10 that Microsoft will have to address. That's why he decided to publish the vulnerability on Twitter and not mention it through Microsoft's bug bounty program.

 

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by Anastasis Vasileiadis

Translations are like women. When they are beautiful they are not faithful and when they are faithful they are not beautiful.

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).