Vulnerability in Windows system that allows you to run any application remotely




Akeshvt security researcher loophole in the Windows operating system that allows hackers to bypass the system of special protection systems, and run any application on personal computers remotely, without having to officials privileges.

The researcher found the vulnerability in your system Regsvr32.exe command line program which allows Windows to bypass the protection AppLocker application systems.

The gap can be used to circumvent the list of permitted applications provided by AppLocker protection system copies directed to the business sector of Windows 7 systems and beyond, and by using the command line to refer to a file or a site controlled by hackers through.

As a result, you can use files and scripts to run any application on a Windows system, as explained security researcher Casey Smith, also known as subTee.

subTee He added that he could exploit the vulnerability without the need for human or system administrator access privileges. In addition, the exploit any distortion in the system does not require, which does not leave any trace, an additional point is calculated for an attacker in an attempt to hide their activities.

Recall that is not available now to any reform of the security loophole discovered, so users need to disable Regsvr32.exe program within Windows Firewall and Windows Firewall to alleviate the problem.


In: A Technology & Gadgets Asked By: [22801 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »