Researcher reveals new zero-day Windows 10 vulnerabilities

Windows 10 still has enough security breaches, and Microsoft does not seem to be willing to fix them in a timely manner. (Source: YouTube)

Controversial security researcher SandboxEscaper revealed three zero-day exploits that are still not patched in the latest May update for Windows 10. The researcher details how attackers can gain complete access of a Windows 10 system through flaws in the Windows Error Reporting service, the Windows Task Scheduler and Internet Explorer 11, and promised to unveil two more exploits soon.

Bogdan Solca, Published 05/23/2019

One might think that, with all the updates that have been released in the past 4 years, Windows 10 would be decently polished in the security department, but this clearly is not the case, as revealed by controversial security researcher SandboxEscaper. For some reason, Microsoft is still releasing updates that include zero-day flaws, and SandboxEscaper is exposing them before they get fixed. In the latest May update for Windows 10 alone SandboxEscaper managed to find three zero-day flaws, and even more will soon be unveiled.

Among the exploits, there is one that the researcher named AngryPolarBearBug2, which seems to be a new version of a flaw related to the Windows Error Reporting service discovered in December 2018. This new bug makes use of the discretionary access control list that is attached to objects found in the Active Directory. The list specifies which users and groups can access said objects and what kind of operations can be performed with them. SandboxEscaper notes that this exploit requires advanced skills and it may take up to 15 minutes to activate it, yet, upon successful trigger, the attacker can edit any Windows file and system executables.

There is also a local privilege escalation bug which occurs in the Windows Task Scheduler. Attackers can’t directly break into systems via this exploit, but they can run a malformed .job file that can elevate initial low-privileges to admin access, granting total control over the entire system. SandboxEscaper released a video explaining how this works and pointed out that this exploit is only confirmed to work on 32-bit versions of Windows 10.

A third vulnerability was discovered within Internet Explorer 11, a web browser that is still included in Windows for legacy purposes, even though Microsoft is trying to promote Edge now. This type of exploit allows attackers to inject malicious code in the browser itself, making it easier for them to setup later attacks through exploit-chains.

SandboxEscaper is planning to unveil two more zero-day flaws and these will be posted on her blog and Github.

Source(s)

SandboxEscaper's blog

via Tom's Hardware

The Apache log4j vulnerability can potentially be used by threat actors to hack into Steam, Twitter, and other services (Image source: Panda Security)

Apache Log4j zero-day exploit could be used by hackers to target users on Steam, Twitter, Amazon, and other platforms 12/12/2021

The new Windows Terminal app preview can now be downloaded from the Microsoft Store. (Source: Microsoft)

The new Windows Terminal is now available for download from the Microsoft Store 06/23/2019

Hackers attacked NASA's Jet Propulsion Lab via a Raspberry Pi, stole 500 MB of mission data 06/23/2019

PC-Doctor Tool For Windows is also believed to be vulnerable to cyber attacks. (Image source: Lifewire)

Cybersecurity company finds worrying vulnerability affecting millions of Dell laptops and desktops 06/22/2019

A new Insider's Preview for Windows 10 is here. (Source: YouTube)

New 20H1-based build makes it to Windows 10 Insiders Preview 06/06/2019

Microsoft's keynote on the latest Windows developments also previewed some of the latest laptop models revealed at Computex. (Source: The Verge)

Microsoft reveals plans for future Modern Windows OS 05/29/2019

Windows 10 1809 has a new patch. (Source: WCCFTech)

Microsoft releases new patch for Windows 10 1809 05/04/2019

Windows 10 reportedly up and running on a developer's OnePlus 6T 04/09/2019

The new File Explorer will also support tabbed windows. (Source: Michael West)

File Explorer to get Fluent Design revamp with Windows 10 April 2020 update 03/26/2019

The next Windows 10 version will feature "reserved storage" and you might not like it 01/08/2019

Loading Comments

Comment on this article

AMD Ryzen 7 3750H and 3700U CPUs wi...

Acer Memorial Day sale lets you tak...

Bogdan Solca - Senior Tech Writer - 2253 articles published on Notebookcheck since 2017

I first stepped into the wondrous IT&C world when I was around seven years old. I was instantly fascinated by computerized graphics, whether they were from games or 3D applications like 3D Max. I'm also an avid reader of science fiction, an astrophysics aficionado, and a crypto geek. I started writing PC-related articles for Softpedia and a few blogs back in 2006. I joined the Notebookcheck team in the summer of 2017 and am currently a senior tech writer mostly covering processor, GPU, and laptop news.

contact me via: Facebook

Please share our article, every link counts!

> Expert Reviews and News on Laptops, Smartphones and Tech Innovations > News > News Archive > Newsarchive 2019 05 > Researcher reveals new zero-day Windows 10 vulnerabilities

Bogdan Solca, 2019-05-23 (Update: 2019-05-23)

Researcher reveals new zero-day Windows 10 vulnerabilities

Source(s)

Related Articles