12px13px15px17px
Date:27/11/20

Security researcher accidentally discovers Windows 7 and Windows Server 2008 zero-day

A French security researcher has accidentally discovered a zero-day vulnerability that impacts the Windows 7 and Windows Server 2008 R2 operating systems while working on an update to a Windows security tool.
 
The vulnerability resides in two misconfigured registry keys for the RPC Endpoint Mapper and DNSCache services that are part of all Windows installations.
 
French security researcher Clément Labro, who discovered the zero-day, says that an attacker that has a foothold on vulnerable systems can modify these registry keys to activate a sub-key usually employed by the Windows Performance Monitoring mechanism.
 
“Performance” subkeys are usually employed to monitor an app’s performance, and, because of their role, they also allow developers to load their own DLL files to track performance using custom tools.
 
While on recent versions of Windows, these DLLs are usually restricted and loaded with limited privileges, Labro said that on Windows 7 and Windows Server 2008, it was still possible to load custom DLLs that ran with SYSTEM-level privileges.
 
But while most security researchers report severe security issues like these to Microsoft in private, when they find them, in Labro’s case, this was too late.
 
Labro said he discovered the zero-day after he released an update to PrivescCheck, a tool to check common Windows security misconfigurations that can be abused by malware for privilege escalation.
 
The update, released last month, added support for a new set of checks for privilege escalation techniques.
 
Labro said he didn’t know the new checks were highlighting a new and unpatched privilege escalation method until he began investigating a series of alerts appearing on older systems like Windows 7, days after the release.
 
By that time, it was already too late for the researcher to report the issue to Microsoft in private, and the researcher chose to blog about the new method on his personal site instead.
 
ZDNet has reached out to Microsoft for comment today, but the OS maker has not provided an official statement before this article’s publication.
 
Both Windows 7 and Windows Server 2008 R2 have officially reached end of life (EOL) and Microsoft has stopped providing free security updates. Some security updates are available for Windows 7 users through the company’s ESU (Extended Support Updates) paid support program, but a patch for this issue has not been released yet.
 
It is unclear if Microsoft will patch Labro’s new zero-day; however, ACROS Security has already put together a micro-patch, which the company released earlier today. The micro-patch is installed via the company’s 0patch security software and prevents malicious actors from exploiting the bug through ACROS’ unofficial patch.





Views: 596

©ictnews.az. All rights reserved.

Facebook Google Favorites.Live BobrDobr Delicious Twitter Propeller Diigo Yahoo Memori MoeMesto






04 March 2021

04/03/21
Minister Rashad Nabiyev met with ministry’s employees who took part in Patriotic War

Minister of Transport, Communications and High Technologies Rashad Nabiyev met with the employees of the

04/03/21
Compal’s Airttach laptop may be the best triple-screen concept we’ve seen yet

When on the go with a laptop, one of the biggest complaints tends to be a lack of screen real estate, especially

04/03/21
Verizon support says you should turn off 5G to save your phone’s battery

Despite its relentless promotion of 5G phones and the fact that it spent more than $45 billion bidding on a new

04/03/21
Xiaomi and Realme announce Qualcomm chip shortage

Xiaomi and Realme are victims of a shortage of chips signed Qualcomm. The two Chinese manufacturers confirm

04/03/21
MediaTek announces MT9638 AI chipset for next-generation 4K Smart TVs

MediaTek, the Taiwan-based chipset maker, has been a market leader when it comes to chips powering the Smart TVs

03 03 2021

03/03/21
Bill Gates prefers Android over iOS smartphones

The iPhone vs Android debate has been around for years with significant backers on both sides. Apple’s iPhone

03/03/21
Strategy Analytics: Cellular IoT Connections to reach 3.5 Billion by 2030

According to the latest research from Strategy Analytics, 5G comprised less than 1

03/03/21
Global Semiconductor Sales Increase 13.2% year-to-year in January

The Semiconductor Industry Association (SIA) today announced global semiconductor industry sales were $40.0

03/03/21
Kuo: Apple could launch 8-inch foldable iPhone and notch-less iPhone in 2023

Ming-Chi Kuo’s analyst note today includes a range of predictions for iPhone 13, the next iPhone SE and iPhone