uTalk

Official forum for Utopia Community

You are not logged in.

#1 2023-06-08 22:50:42

thrive
Member
Registered: 2023-01-04
Posts: 1,963

Experts Reveal Active Exploitation of a Recent Windows Vulnerability

E1A6a7z.png
Information has become available regarding a Microsoft Windows security hole that is currently being actively exploited and could be used by a threat actor to elevate their privileges on impacted systems.

The bug affects an elevation of privilege in the Win32k component and is tracked as CVE-2023-29336. It is given a severity rating of 7.8.

Microsoft stated in an advisory released as part of Patch Tuesday updates last month that "An attacker who successfully exploited this vulnerability could gain SYSTEM privileges.".

Jan Vojtek, Milánek, and Luigino Camastra, researchers for Avast, are credited with finding and reporting the flaw.

The graphical device interface (GUI) and window management are handled by Win32k . sys, a kernel-mode driver that is a crucial component of the Windows architecture.

Numen Cyber has dismantled the Microsoft patch to create a proof-of-concept (PoC) exploit for Windows Server 2016, despite the fact that the specifics of in-the-wild abuse of the flaw are currently unknown.


The Singapore-based cybersecurity firm claimed that the flaw depended on the exposed kernel handle address in the heap memory to ultimately obtain a read-write primitive.

According to Numen Cyber, historical Win32k flaws are well-known. "However, Microsoft tried to use Rust to refactor this portion of the kernel code in the most recent Windows 11 preview version. This might eliminate future vulnerabilities in the new system. ".

By highlighting the need for advanced security capabilities and concentrating on OS-level security attack and defense capabilities, Numen Cyber sets itself apart from typical Web3 security companies. Modern solutions to Web3's particular security challenges are provided by their goods and services.

Offline

#2 2023-06-09 19:32:37

KAMSI_UG
Member
Registered: 2022-12-26
Posts: 1,858

Re: Experts Reveal Active Exploitation of a Recent Windows Vulnerability

Well it's was always going to be like this the challenges that the windows were facing was much and it was just going to be a matter of time before it would be exploited.

Offline

Board footer

Powered by FluxBB