Category: Microsoft|Jul 23, 2021 | Author: Admin

Newly spotted Windows 10 and 11 vulnerability lets any user have admin privileges

Share on

Windows 11 preview testers have discovered an early security bug, one that seems to have carried over from Windows 10. This new Windows 10 and Windows 11 vulnerability creates a path for any local user to gain admin privileges.

As reported by Bleeping Computer, some Windows 10 and Windows 11 registry files are accessible by the ‘Users’ group, allowing anyone to extract the hashed credentials of admin accounts and use them to gain admin privileges.

 

The registry files we are talking about are stored in the C:\Windows\system32\config folder. There you will find the ‘SYSTEM’, ‘SECURITY’, ‘SAM’, ‘DEFAULT’, and ‘SOFTWARE’ files, which contain sensitive information that should not be accessible to low-level accounts. Unfortunately, that’s not the case.

 

To check the file permissions on this file, open the command prompt, and write “icacls C:\Windows\system32\config\’name of the file'”. After pressing enter, the command prompt will show you the file permissions.

 

When Windows is running, these files are in use, meaning unwanted guests won’t be allowed to access it. However, these files may be backed up by Windows shadow volume copies, which are accessible.

 

Microsoft has confirmed the vulnerability and plans to release a fix soon, although a community-generated fix has already been found. To fix the problem yourself, you’ll want to open up a command prompt as an administrator and execute the following command: “icacls %windir%\system32\config\*.* /inheritance:e”. If you have any shadow volume copies that were made before running the command, delete them.

Sponsored Ads:

Comments:


Password program hacked again

Category: IT|Dec 3, 2022 | Author: Admin

Update your iPhone

Category: Apple|Dec 2, 2022 | Author: Admin

Tesla gets Dolby Atmos

Category: General|Dec 1, 2022 | Author: Admin

If Twitter is kicked out by Apple and Google, Musk will make his own mobile phone

Category: IT|Nov 30, 2022 | Author: Admin

The EU is investigating TikTok

Category: IT|Nov 29, 2022 | Author: Admin

Must be scrutinized extra carefully

Category: IT|Nov 28, 2022 | Author: Admin

Important drivers launched

Category: IT|Nov 27, 2022 | Author: Admin

Soon, Apple will make the big iPhone change

Category: Apple|Nov 26, 2022 | Author: Admin

Approaching the Apple iPhone

Category: Google|Nov 25, 2022 | Author: Admin

Microsoft is making an iPhone comeback

Category: Microsoft|Nov 23, 2022 | Author: Admin

This is how the iPhone 15 Pro becomes much faster

Category: Apple|Nov 22, 2022 | Author: Admin

Apple makes iPhone more like Android (if you want)

Category: Apple|Nov 21, 2022 | Author: Admin

These countries cheat the most and this is how they do it

Category: General|Nov 20, 2022 | Author: Admin

How to set up NightScout Docker using CyberPanel Hosting panel

Category: Tutorials|Nov 19, 2022 | Author: Admin

It will soon be over and out, warns Microsoft

Category: Microsoft|Nov 18, 2022 | Author: Admin
more