Welcome to our

Cyber Security News Aggregator

.

Cyber Tzar

provide a

cyber security risk management

platform; including automated penetration tests and risk assesments culminating in a "cyber risk score" out of 1,000, just like a credit score.

Interesting Privilege Escalation Vulnerability

published on 2021-08-26 11:28:00 UTC by Bruce Schneier
Content:

If you plug a Razer peripheral (mouse or keyboard, I think) into a Windows 10 or 11 machine, you can use a vulnerability in the Razer Synapse software — which automatically downloads — to gain SYSTEM privileges.

It should be noted that this is a local privilege escalation (LPE) vulnerability, which means that you need to have a Razer devices and physical access to a computer. With that said, the bug is so easy to exploit as you just need to spend $20 on Amazon for Razer mouse and plug it into Windows 10 to become an admin.

Article: Interesting Privilege Escalation Vulnerability - published about 3 years ago.

https://www.schneier.com/blog/archives/2021/08/interesting-privilege-escalation-vulnerability.html   
Published: 2021 08 26 11:28:00
Received: 2021 08 26 12:05:35
Feed: Schneier on Security
Source: Schneier on Security
Category: Cyber Security
Topic: Cyber Security
Views: 2

Custom HTML Block

Click to Open Code Editor