The researcher SandboxEscaper discovered a second way to bypass a patch that Microsoft published last April. It allows an attacker to obtain System privileges on a machine.
.png)
After wildly publishing a series of four zero-day vulnerabilities last month, the security researcher SandboxEscaper decided to return to work.
She has just published the details of a new attack called "ByeBear". This targets the Windows AppX Deployment service and allows the software to obtain system privileges.
The underlying flaw (CVE-2019-0841) had already been fixed last April by Microsoft, but ByeBear allows to work around this patch. This is the second time the researcher has undermined this patch.
Her attack entitled "CVE-2019-0841-BYPASS", which she published last month, was already shattering it. Below is a demonstration video, retrieved by Hacker News.
"This bug is most definitely not restricted to the edge. This will be triggered with other packages too. So you can definitely figure out a way to trigger this bug silently without having edge pop up. Or you could probably minimize edge as soon as it launches and closes it as soon as the bug completes", SandboxEscaper explains.
According to ZDnet, the researcher intends to publish a new zero-day vulnerability in the coming days. But nothing could be less certain. The expert has since locked her blog, after saying she wants to sell her zero-day rather than publish them for free.
But she had already made similar comments last month. It is therefore difficult to take this seriously. Moreover, as researcher Eliott Anderson points out, no one really wants to buy zero-day tickets from such an unstable and unpredictable person. The reasons for SandboxEscaper's actions remain a mystery.
Nobody is buying 0day from an unstable person. You need to trust the seller and if there is a possibility that the seller will publish the 0day on Github without warning it's a no go. - Elliot Alderson (@fs0c131y) June 9, 2019
Sources: ZDnet, Hacker News
I've made a lot of articles with tools, explanations and advises to show you how to protect your privacy and to secure your computer, GO check them out!
This is my guide To Secure your PC after a fresh installation of Windows
If you think that your Phone or your PC has been hacked, you have to check it right now!
That's how you can be more Anonymous on the internet!
The Future of Cyber-Security, what to expect?
The best Crypto debit card – Wirex!
These are the best VPN to protect your numeric life: NordVPN, ExpressVPN and CyberGhost!
Your PC is slow? That's why!
Why is it important to Be Discreet on the Internet
What Do Tech Giants Know About You? A New Tool To Get An Idea!
Feel hot? Your Computer also!
How an Adware works?
That's how you should guard against Trojan!
What are the different Types of hackers?
Immensely thought out! Whoa.
Downvoting a post can decrease pending rewards and make it less visible. Common reasons:
Submit