Google researcher publishes details of UNpatched Win 8.1 Vulnerability

Started by ky331, January 01, 2015, 01:14:21 PM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Print
Go Down Pages1
User actions

ky331

January 01, 2015, 01:14:21 PM
A Google security researcher... has taken the bold step to publish a security vulnerability in Windows 8.1 that is still exploitable... [making] the defense that he/she waited 90 days after first publication of the vulnerability before letting the world know how to exploit it, and so far, Microsoft has not patched the issue.

The post was made on Google's security research site where it discloses the vulnerability and how to execute the flaw. The vulnerability allows for an elevation of privilege in ahcache.sys/NtApphelpCacheControl and there is a demo application that can launch calc.exe using the method.

http://www.neowin.net/news/google-researcher-publishes-unpatched-windows-81-security-vulnerability

siljaline

#1
January 02, 2015, 06:12:29 AM
With Tweets from ZDNET's Larry Seltzer.

siljaline
MVPS Hosts . MBAM . Why ESET
Print
Go Up Pages1
User actions