this post was submitted on 28 Sep 2024
19 points (95.2% liked)

Cybersecurity

5694 readers
196 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !cybersecurity@lemmy.capebreton.social !securitynews@infosec.pub !netsec@links.hackliberty.org !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub

Notable mention to !cybersecuritymemes@lemmy.world

founded 1 year ago
MODERATORS
kid@sh.itjust.works
Lanky_Pomegranate530@midwest.social
19
Novel Exploit Chain Enables Windows UAC Bypass (www.darkreading.com)
submitted 1 month ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works
1 comments fedilink hide all child comments
top 1 comments
sorted by: hot top controversial new old
[–] wizardbeard@lemmy.dbzer0.com 4 points 1 month ago* (last edited 1 month ago)

Saved you a click: Exploit requires attacker to already have an account in the local administrators group, and appears to only allow local admin privileges anyway.

You can remap the C:\ drive (including the OS files in system and windows folders) to a location you already control, with exploited system files and dlls, rather than having to go through UAC and confirm you want to use admin privileges to replace them in-situ.

Microsoft doesn't consider this an actual vuln because local admins are already defacto trusted and able to use their admin status to do all this anyway. They could just disable UAC locally anyway.