Home > Cyber News > New Windows Zero-Day Bug Allows a Local User to Obtain SYSTEM Privileges
CYBER NEWS

New Windows Zero-Day Bug Allows a Local User to Obtain SYSTEM Privileges

by   |  Last Update:  |  0 Comments  

A new Windows zero-day vulnerability has been announced by CERT/CC. The organization just put out a warning of the flaw which is described as a privilege escalation one.




The vulnerability was initially announced on Twitter by SandboxEscaper who also said that it is a zero-day with a proof-of-concept published on GitHub.

New Zero-Day in Windows Officially Verified

Further down the line, the zero-day was verified by CERT/CC vulnerability analyst Phil Dormann who tweeted the following:

“I’ve confirmed that this works well in a fully-patched 64-bit Windows 10 system. LPE [Local Privilege Escalation] right to SYSTEM!”

An official investigation has also taken place, conducted by CERT/CC. Here’s what’s in the official vulnerability note posted by CERT/CC:

Vulnerability Note VU#906424
Microsoft Windows task scheduler contains a local privilege escalation vulnerability in the ALPC interface.

Apparently, Microsoft Windows task scheduler contains the local privilege escalation vulnerability in question, which is located in the Advanced Local Procedure Call (ALPC) interface. The zero-day bug can allow a local user to obtain SYSTEM privileges.

Related Story: July 2018 Patch Tuesday Fixes CVE-2018-8281, Microsoft Office Bugs

The information about the vulnerability is still insufficient, and it also hasn’t be assigned a CVE identifier. However, it is known that it opens a loophole and enables a well-known attack vector.

If a malicious actor succeeds in tricking a user to download and run an app, a piece of malware is activated through local privilege escalation. The attack chain ends with obtaining system privileges.

There is still no known solution to this issue, and most likely Microsoft will fix it through Patch Tuesday.

Milena Dimitrova

An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim

More Posts

Follow Me:
Twitter

Related posts:
  1. The Windows User Security Bible: Vulnerabilities and Patches If you’re one of those conscious users who acquaint themselves...
  2. PowerPool Hackers Exploit Newly Identified Windows Zero-Day Vulnerability A new Microsoft Windows zero-day vulnerability known as ALPC LPE...
  3. 17-Year Old Bug in Firefox Allows Local Files Theft Attacks Security researcher Barak Tawily recently came across a 17-year-old security...
  4. Intel Just Fixed 132 Vulnerabilities, Some of Which Severe (CVE-2021-0133) Intel just released 29 security advisories addressing 132 various issues...
  5. CVE-2018-8589 Zero-Day Affected Windows Win32k Component Microsoft’s November 2018 Patch Tuesday’s has rolled out, and it...
  6. CVE-2018-8440 Zero-Day Fixed in September 2018 Patch Tuesday September Patch Tuesday 2018 has been released, fixing a total...
  7. November 2022 Patch Tuesday Fixes 6 Exploited Zero-Days (CVE-2022-41128) November 2022 Patch Tuesday: What Has Been Fixed? November 2022...
  8. Severe CVE-2019-0888 Patched in June 2019 Patch Tuesday A total of 88 vulnerabilities were fixed in Microsoft’s June...

Leave a Comment

Your email address will not be published. Required fields are marked *

This website uses cookies to improve user experience. By using our website you consent to all cookies in accordance with our Privacy Policy.
I Agree