Saturday, October 12, 2024
HomeSecurity NewsGoogle's Project Zero Reveals Unpatched Windows 10 S Security Bug After 90-day...

Google’s Project Zero Reveals Unpatched Windows 10 S Security Bug After 90-day Deadline

Published on

Malware protection

Google’s Project Zero Reveals Unpatched Windows 10 S Security bug that bypasses the windows 10 app lockdown that allows users to run only the whitelisted app.

The bug open to the public now as the 90-day deadline exceeded, Google’s Project Zero security researcher James Forshaw released a detailed description of the bug along with the PoC.

The severity of the bug is rated as medium and the lockdown policy can be bypassed by using a .NET bug that leads to arbitrary code execution on a system with UMCI enabled.

An arbitrary code execution vulnerability allows a user to create or modify a file in any location that user could not access normally, this vulnerability occurs due to lack of input sanitization.
- Advertisement - SIEM as a Service

The bug itself resides in .NET that not behaving well with COM implementations and the .NET object created having a direct impact on the class policy which allows an attacker to add registry keys.

“As .NET then don’t care about whether the .NET Type has that specific GUID you can use this to bootstrap arbitrary code execution by abusing something like DotNetToJScript,” he said.

The bug affects only the Windows 10S users and it cannot be executed remotely, attackers need to have the code already running on the machine to install the registry entries that exploit this vulnerability, although this could be through an RCE such as a vulnerability in Edge he said.

“The issue isn’t as serious as it might have been if all known avenues for bypass were fixed”, he wrote.

This is not the first time Google Revealed Zero-day Bug in public before Patch is Released, last month they disclosed a Zero-day Bug with Microsoft  Edge as the 90 day Deadline Crossed.

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Threat Actor ProKYC Selling Tools To Bypass Two-Factor Authentication

Threat actors are leveraging a newly discovered deepfake tool, ProKYC, to bypass two-factor authentication...

Mozilla Warns Of Firefox Zero-Day Actively Exploited In Cyber Attacks

A critical use-after-free vulnerability affecting Firefox and Firefox Extended Support Release (ESR) is being...

SpyCloud Embeds Identity Analytics in Cybercrime Investigations Solution to Accelerate Insider and Supply Chain Risk Analysis & Threat Actor Attribution

IDLink, SpyCloud’s new automated digital identity correlation capability, is now core to its industry-leading...

Abusix and Red Sift Form New Partnership, Leveraging Automation to Mitigate Cyber Attacks

The agreement has marked over 600,000 fraudulent domains for takedown in just two months...

Free Webinar

Protect Websites & APIs from Malware Attack

Malware targeting customer-facing websites and API applications poses significant risks, including compliance violations, defacements, and even blacklisting.

Join us for an insightful webinar featuring Vivek Gopalan, VP of Products at Indusface, as he shares effective strategies for safeguarding websites and APIs against malware.

Discussion points

Scan DOM, internal links, and JavaScript libraries for hidden malware.
Detect website defacements in real time.
Protect your brand by monitoring for potential blacklisting.
Prevent malware from infiltrating your server and cloud infrastructure.

More like this

Critical PDF.js & React-PDF Vulnerabilities Threaten Millions Of PDF Users

A new critical vulnerability has been discovered in PDF.js, which could allow a threat...

LayerX Security Raises $26M for its Browser Security Platform, Enabling Employees to Work Securely From Any Browser, Anywhere

LayerX, pioneer of the LayerX Browser Security platform, today announced $24 million in Series...

Email Header Analysis – Verify Received Email is Genuine or Spoofed

Email Header Analysis highly required process to prevent malicious threats since Email is...