Get a Pentest and security assessment of your IT network.

Cyber Security

Zero-Day No More: Windows Bug Gets a Fix

Local privilege-escalation (LPE) zero-day bug in Microsoft Task Scheduler bug now has a micropatch. SandboxEscaper has released a fix for the dangerous LPE bug, while we wait for Microsoft s official patch. The bug allows a low-privileged user on the computer to arbitrarily modify any file, including system executables. The attack gives an adversary access to highly privileged files that usually only SYSTEM and TrustedInstaller have ownership over.

Source: https://threatpost.com/zero-day-sandboxescaper-windows-fix/145337/

Related posts
Cyber Security

Zip Codes & PII: Are They Personal Data?

Cyber Security

Zero-Day Vulnerabilities: User Defence Guide

Cyber Security

Zero Knowledge Voting with Trusted Server

Cyber Security

ZeroNet: 51% Attack Risks & Mitigation