Category: Microsoft|Jul 23, 2021 | Author: Admin

Newly spotted Windows 10 and 11 vulnerability lets any user have admin privileges

Share on

Windows 11 preview testers have discovered an early security bug, one that seems to have carried over from Windows 10. This new Windows 10 and Windows 11 vulnerability creates a path for any local user to gain admin privileges.

As reported by Bleeping Computer, some Windows 10 and Windows 11 registry files are accessible by the ‘Users’ group, allowing anyone to extract the hashed credentials of admin accounts and use them to gain admin privileges.

 

The registry files we are talking about are stored in the C:\Windows\system32\config folder. There you will find the ‘SYSTEM’, ‘SECURITY’, ‘SAM’, ‘DEFAULT’, and ‘SOFTWARE’ files, which contain sensitive information that should not be accessible to low-level accounts. Unfortunately, that’s not the case.

 

To check the file permissions on this file, open the command prompt, and write “icacls C:\Windows\system32\config\’name of the file'”. After pressing enter, the command prompt will show you the file permissions.

 

When Windows is running, these files are in use, meaning unwanted guests won’t be allowed to access it. However, these files may be backed up by Windows shadow volume copies, which are accessible.

 

Microsoft has confirmed the vulnerability and plans to release a fix soon, although a community-generated fix has already been found. To fix the problem yourself, you’ll want to open up a command prompt as an administrator and execute the following command: “icacls %windir%\system32\config\*.* /inheritance:e”. If you have any shadow volume copies that were made before running the command, delete them.

Sponsored Ads:

Comments:


USA bans Kaspersky antivirus

Category: IT|Jun 21, 2024 | Author: Admin

Google is canceling cheap YouTube Premium subs obtained via VPN

Category: Google|Jun 20, 2024 | Author: Admin

That's why Apple limits "AI" to the iPhone 15 Pro - EU NOT happy with the App Store

Category: Apple|Jun 19, 2024 | Author: Admin

"Apple has canceled the Vision Pro 2" - something exciting could happen in 2025

Category: IT|Jun 18, 2024 | Author: Admin

Just Don't Ask Nintendo About 'Switch 2'

Category: General|Jun 17, 2024 | Author: Admin

Adobe to adapt terms of service on gen AI training after customer backlash

Category: IT|Jun 16, 2024 | Author: Admin

Microsoft delivers a light Patch Tuesday for June

Category: Microsoft|Jun 15, 2024 | Author: Admin

Ending Android after 14 years

Category: Google|Jun 14, 2024 | Author: Admin

Apple pays nothing

Category: Apple|Jun 13, 2024 | Author: Admin

Netgear WNR614 flaws allow device takeover, no fix available

Category: IT|Jun 12, 2024 | Author: Admin

Malicious VSCode extensions with millions of installs discovered

Category: Microsoft|Jun 11, 2024 | Author: Admin

Brave says May 2024 was its biggest growth month ever

Category: IT|Jun 10, 2024 | Author: Admin

The speedometer can disappear - now in crisis Volvo is updating over 70,000 cars

Category: IT|Jun 9, 2024 | Author: Admin

LastPass says 12-hour outage caused by bad Chrome extension update

Category: IT|Jun 8, 2024 | Author: Admin

Netflix is ‚Äč‚Äčtesting big changes

Category: General|Jun 7, 2024 | Author: Admin
more