Skip to content
WaveTechGlobal

WaveTechGlobal

Ahead of the tide

Primary Menu
  • Home
  • Tech Gurus
  • Mobile Gurus
  • Game Gurus
  • Pokemon
  • Smart Home Gurus
  • Home
  • Latest
  • You can instantly become an admin with a new exploit on Windows zero-day
  • Latest

You can instantly become an admin with a new exploit on Windows zero-day

Dorian Stewart December 9, 2021 2 min read
177

An exploit was found in Windows that would allow attackers to become administrators with a single click. The security flaw will likely affect major PC providers and leave customers vulnerable for no apparent reason. Experts are working on patches, but the damage is already done

Don has been writing professionally for more than ten years, although his love of the written word began in elementary school. Livebitcoinnews.com, Learnbonds.com, eHow, AskMen.com, and other websites have featured his work. Continue reading

  • Researchers have discovered a new Windows zero-day attack that enables admin capabilities in versions of Windows 10, 11, and Windows Server.
  • Once the vulnerability has been exploited, the threat actors will be able to travel throughout the network with SYSTEM access.
  • The issue was initially detected in the Patch Tuesday for October 2021.

Researchers have uncovered a new attack that is a Windows vulnerability. Cybersecurity has gone a long way.

The new attack takes use of local privileges to provide administrators access to versions of Windows 10, Windows 11, and Windows Server.

Once a Standard user account has been given access, it has the ability to be elevated to SYSTEM user rights and travel throughout the network.

The flaw was identified in the October 2021 Patch Tuesday and corrected in the November 2021 Patch Tuesday, according to reports. There was a workaround that uncovered a more powerful privilege flaw and exploited it.

a demonstration of the concept

Abdelhamid Naceri of Trend Micro released a successful proof-of-concept (PoC) exploit for the new zero-day, claiming that it works on all supported versions of Windows.

“During the examination of the CVE-2021-41379 fix, this variant was uncovered. However, instead of removing the bypass, the problem was not corrected appropriately. This version has been dropped since it is more potent than the original.”

The PoC is “very reliable,” according to Naceri. He put it through its paces in a variety of scenarios and Windows versions, and it passed each time.

He goes on to say that the proof-of-concept also works in a Windows server environment. This is unusual since it prevents ordinary people from running MSI installers.

“Due to the intricacy of this issue, the best remedy available at the time of writing this is to wait [for] Microsoft to release a security fix.” Any effort to directly patch the binaries will cause [the] windows installation to fail.”

What are your thoughts on this latest exploit? Let us know what you think in the comments area.

Was this page of assistance to you?

Thank you very much!

There are insufficient details It’s difficult to comprehend Other Speak with a Professional

Start a discussion.

Watch This Video-

Continue Reading

Previous: Try 5 Apps To Watch Live Indian TV Channels 😍 On Your Mobile
Next: How to Resolve Update Error 0X800F0982 on Windows 10

Trending Now

Can Other People See Your Likes On Twitter spac 4b5bstreetjournal 1

Can Other People See Your Likes On Twitter

September 29, 2022
Can You Put Music On Your Instagram Profile or Account jeff national enquirer amazonstonebloomberg 2

Can You Put Music On Your Instagram Profile or Account

September 29, 2022
Can you find the animal on the Galapagos Islands 3

Can you find the animal on the Galapagos Islands

August 21, 2022
What is the importance of facebook messenger full screen cybersecurity proofpoint facebook facebookcimpanu 4

What is the importance of facebook messenger full screen

August 20, 2022
Clan Guide Blade and Soul Revolution 5

Clan Guide Blade and Soul Revolution

August 18, 2022
Catch ’em all with quick balls 6

Catch ’em all with quick balls

August 14, 2022

Related Stories

Why Can’t Every YouTube Ad Be Skipped?
3 min read
  • Latest

Why Can’t Every YouTube Ad Be Skipped?

May 31, 2023 55
Will Working Remote Bloom or Die?
3 min read
  • Latest

Will Working Remote Bloom or Die?

May 24, 2023 61
Ornikar’s driving school marketplace ornikar 750m 175mlundentechcrunch
11 min read
  • Latest

Ornikar’s driving school marketplace

March 30, 2023 88
Why is social commerce growing in Brazil? facily 250m series 850m 366mann azevedotechcrunch
10 min read
  • featurepost2
  • Latest

Why is social commerce growing in Brazil?

March 30, 2023 106
The future of OLED and mini-LED: what to expect from Apple and others kuo air oled ipad profathimacrumors
11 min read
  • featurepost2
  • Latest

The future of OLED and mini-LED: what to expect from Apple and others

March 30, 2023 108
Apple drops plans for OLED iPad Air apple ipad air oled ipad profathimacrumors
6 min read
  • featurepost3
  • Latest

Apple drops plans for OLED iPad Air

March 30, 2023 119

Recent Posts

  • Social Proof Explained: What It is And How to Use It
  • What Distinguishes The Leading Casino App?
  • Why Can’t Every YouTube Ad Be Skipped?
  • 5 Reasons Your SEO Agency Might Be Holding You Back
  • Will Working Remote Bloom or Die?

Categories

  • featurepost1 (3)
  • featurepost2 (6)
  • featurepost3 (5)
  • featurepost4 (5)
  • Game Gurus (29)
  • Latest (231)
  • Mobile Gurus (25)
  • Pokemon (66)
  • Smart Home Gurus (76)
  • Tech Gurus (48)

Tech Articles

Bezos’ leadership style amazon jeff ceo amazonhaseltoncnbc bezos executive 1

Bezos’ leadership style

February 24, 2023
Why is the Republican lauding the Twitter owner? house republicans twitter musk gopfeinercnbc 2

Why is the Republican lauding the Twitter owner?

February 24, 2023
How Smartphone Shipments Declined 8.9% in the First Quarter as Global Demand Softens, According to IDC idc apple iphones q1 idcleswingcnbc 3

How Smartphone Shipments Declined 8.9% in the First Quarter as Global Demand Softens, According to IDC

February 24, 2023
Why Instagram Trails TikTok and YouTube On Creator Satisfaction, Mosseri Tells Staff adam mosseri tiktok youtube instagramrodriguezcnbc 4

Why Instagram Trails TikTok and YouTube On Creator Satisfaction, Mosseri Tells Staff

February 24, 2023
The Afghan Taliban’s views on what constitutes legitimate Islamic governance afghan taliban afghanstechnologyreview 5

The Afghan Taliban’s views on what constitutes legitimate Islamic governance

February 24, 2023

Thanks to our partners!

  • About Us
  • Contact the Crew
  • Privacy Policy
  • T&C
Wave Tech Global © All rights reserved.
We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept”, you consent to the use of ALL the cookies.
Do not sell my personal information.
Cookie SettingsAccept
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checkbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT