Windows 0-day drops on the same day Microsoft releases patches



Right on the heels of Microsoft releasing a record number in security patches, a researcher has published exploit code that could cause Windows accounts with limited privileges to change to administrative accounts.

Application, which several researchers to say work. To date, the pseudonymous NightmareEclypse has published nine items, including HiveLegacy Tuesday. The researcher said the verification code included in the report was removed to prevent attackers from exploiting it.

“The most powerful old man”

HiveLegacy is an advanced feature that combats the vulnerability in the Windows User Profile Service. It allows users (as well as many other operating systems) with limited rights to tamper with the user’s account by making changes. hive registry classesa feature that ensures that the correct program is opened when certain types of files are clicked on in Windows Explorer.

Read the full article

Comments



Source link

اترك ردّاً

لن يتم نشر عنوان بريدك الإلكتروني. الحقول الإلزامية مشار إليها بـ *