Researchers Uncover Windows Flaws Granting Hackers Rootkit-Like Powers

22-Apr-24

The DOS-to-NT path conversion process in Windows has been found to harbor vulnerabilities that grant threat actors rootkit-like capabilities, allowing them to conceal and impersonate files, directories, and processes. SafeBreach researchers highlighted this issue, demonstrating how it could be exploited for various malicious actions without requiring admin permissions. Microsoft has addressed three of the discovered security shortcomings, including elevation of privilege and denial-of-service vulnerabilities, but one remains to be fixed. This research underscores the importance of addressing seemingly harmless issues that could be exploited to pose significant security risks.








Read More…