Microsoft Releases A Workaround For Important Windows 10 Bug

Microsoft has released a workaround for a privilege elevation flaw that affects the Security Accounts Manager (SAM) database in all versions of Windows 10 and could allow attackers to access data and create new accounts on systems.

The vulnerability, marked as CVE-2021-36934, could allow local attackers to execute their own code with system privileges.

The vulnerability was discovered over the weekend by Jonas Lyk, but the US CERT coordination center identified several other ways the bug could affect Windows 10 machines.

Some of them involve an attacker extracting and using password hashes for accounts, discovering the original Windows installation password, obtaining DPAPI computer keys, and obtaining a computer machine account.

The bug affects the SAM of versions of Windows 10 from version 1809.

It may be more urgent to patch because the details of the vulnerability are publicly available.

For more information, read the original story in ZDNet.

Microsoft Releases A Workaround For Important Windows 10 Bug

Top Stories

Quantum breakthrough researchers cut required qubits from millions to thousands

Anthropic coding tool exposes full source code again after packaging error

Cisco breach exposes 300+ repos after supply chain attack

OpenAI cuts Sora with $1M-a-day costs to free up resources for core AI models

AI boom faces new constraint as helium disruption slows chip production

New Google update targets sensitive data exposure in search results

Related Articles

Anthropic coding tool exposes full source code again after packaging error

Cisco breach exposes 300+ repos after supply chain attack

New Google update targets sensitive data exposure in search results

GitHub Copilot to train on user data by default

TND News Desk

TND News Desk

Jim Love

Follow Us

Popular categories

Tech News Delivered