New Windows 10 security flaw gives system privileges to hackers

Daniel Segun By: Daniel Segun
2 minute read

Home » News » New Windows 10 security flaw gives system privileges to hackers

Recently, a security researcher @SandboxEscaper disclosed in a tweet which has been deleted (the account also has been removed), that the task scheduler is vulnerable to hackers’ attacks. More specifically, a successful attack will involve the user downloading a malicious app on a target machine which will then offer hackers full system priviliges.

Phil Dormann, a CERT researcher, confirmed the bug on the social network. He explained that it works “on a fully-patched 64-bit Windows 10 system. LPE right to SYSTEM!”

CERT also offered additional information on this security vulnerability:

Local privilege escalation vulnerability is contained in a Microsoft Windows task scheduler in the Advanced Local Procedure Call (ALPC) interface, which enables a local user to obtain SYSTEM privileges,” the advisory reads. Elevated (SYSTEM) privileges might be gained by local users.

Microsoft may fix this security issue in September

Microsoft already confirmed that they’re working on a fix which should be available in September. Most likely, the hotfix will be available on Patch Tuesday, which means that Windows 10 computer will be vulnerable to attacks for two more weeks.

It seems all Windows 10 versions are affected, regardless of the patch level. Fully up-to-date systems are vulnerable as well. However, older Windows version, such as Windows 7 and Windows 8.1, are not affected by the problem..

We do recommend that you protect your Windows PC by using a strong antivirus program such as Bitdefender, BullGuard, or Malwarebytes. You can also install a specific program to scan and remove hidden malware in order to detect and remove any malware that may have sneaked in your computer.

RELATED STORIES TO CHECK OUT:

Discussions

Next up

Windows 10 April 2019 Update is almost here, new builds focus on fixes

Matthew Adams By: Matthew Adams
3 minute read

Microsoft is gearing up for the next big Windows 10 build update in spring 2019. The software giant has just announced Windows 10 Insider Preview […]

Continue Reading

Getting Something went wrong Netflix error? Here’s how to fix it

Matthew Adams By: Matthew Adams
4 minute read

Netflix is one of the foremost movie-streaming services that users can utilize within browsers or with its app. However, Netflix also throws out Something went […]

Continue Reading

KB4489890, KB4489888 and KB4489889 bring many issues of their own

Rabia Noureen avatar. By: Rabia Noureen
3 minute read

Microsoft rolled out a new series of cumulative updates for three Windows 10 versions: v1709, v1703 and v1607. The updates don’t come with any security fixes this […]

Continue Reading