Microsoft Releases A Workaround For Important Windows 10 Bug

Microsoft has released a workaround for a privilege elevation flaw that affects the Security Accounts Manager (SAM) database in all versions of Windows 10 and could allow attackers to access data and create new accounts on systems.

The vulnerability, marked as CVE-2021-36934, could allow local attackers to execute their own code with system privileges.

The vulnerability was discovered over the weekend by Jonas Lyk, but the US CERT coordination center identified several other ways the bug could affect Windows 10 machines.

Some of them involve an attacker extracting and using password hashes for accounts, discovering the original Windows installation password, obtaining DPAPI computer keys, and obtaining a computer machine account.

The bug affects the SAM of versions of Windows 10 from version 1809.

It may be more urgent to patch because the details of the vulnerability are publicly available.

For more information, read the original story in ZDNet.

Microsoft Releases A Workaround For Important Windows 10 Bug

Top Stories

New Deepfakes Can Mimic Heartbeats, Evading Detection Tools

RBC Pushes Employees Back to Office to Preserve ‘Winning Culture’

Microsoft Azure Closes Cloud Gap with AWS as AI and Enterprise Migrations Fuel Growth

Sleeper Supply Chain Attack Activates After 6 Years

Dell has another major round of layoffs

One of the biggest data breaches ever, billions of users affected

Related Articles

No charges after Fredericton officer’s computer ends up with accused drug suspect

Microsoft eliminates high-privilege access flaws in Microsoft 365

65% of Canadians Still Reusing Passwords Despite Identity Theft Fears, Okta Study

Ottawa Warns of China-Linked Hack on Canadian Telecom Gear

Jim Love

Follow Us

Popular categories

Tech News Delivered