{"id":31946,"date":"2020-09-14T19:20:35","date_gmt":"2020-09-14T23:20:35","guid":{"rendered":"http:\/\/pappp.net\/?guid=54d8d9f25b7abfc80bbbd403a154a682"},"modified":"2020-09-14T19:20:35","modified_gmt":"2020-09-14T23:20:35","slug":"new-windows-exploit-lets-you-instantly-become-admin-have-you-patched","status":"publish","type":"post","link":"https:\/\/pappp.net\/?p=31946","title":{"rendered":"New Windows exploit lets you instantly become admin. Have you patched?"},"content":{"rendered":"<p class=\"syndicated-attribution\">Source: <a href=\"https:\/\/arstechnica.com\/?p=1706068\">Ars Technica<\/a><\/p>\n<div style=\"background-color : #fff7d5;\n\t\t\tborder-width : 1px; padding : 5px; border-style : dashed; border-color : #e7d796;margin-bottom : 1em; color : #9a8c59;\">Article note: Ohh.  _This_ is why Microsoft was so pushy about that most recent round of patches.<\/div><div>\n<figure><img src=\"https:\/\/cdn.arstechnica.net\/wp-content\/uploads\/2020\/09\/admin-800x534.jpg\" alt=\"A casually dressed man smiles next to exposed computer components.\" referrerpolicy=\"no-referrer\"\/><p><a href=\"https:\/\/cdn.arstechnica.net\/wp-content\/uploads\/2020\/09\/admin.jpg\" rel=\"noopener noreferrer\">Enlarge<\/a> (credit: <a rel=\"noopener noreferrer\" href=\"https:\/\/commons.wikimedia.org\/wiki\/File:Papaul_Tshibamba-1.jpg\">VGrigas (WMF)<\/a>)<\/p>  <\/figure><div><a name=\"page-1\"><\/a><\/div>\n<p>Researchers have developed and published a proof-of-concept exploit for a recently patched Windows vulnerability that can allow access to an organization&rsquo;s crown jewels&mdash;the Active Directory domain controllers that act as an all-powerful gatekeeper for all machines connected to a network.<\/p>\n<p>CVE-2020-1472, as the vulnerability is tracked, carries a <a href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2020-1472\" rel=\"noopener noreferrer\">critical severity rating<\/a> from Microsoft as well as a maximum of 10 under the Common Vulnerability Scoring System. Exploits require that an attacker already have a foothold inside a targeted network, either as an unprivileged insider or through the compromise of a connected device.<\/p>\n<h2>An &ldquo;insane&rdquo; bug with &ldquo;huge impact&rdquo;<\/h2>\n<p>Such post-compromise exploits have become increasingly valuable to attackers pushing ransomware or espionage spyware. Tricking employees to click on malicious links and attachments in email is relatively easy. Using those compromised computers to pivot to more valuable resources can be much harder.<\/p><\/div><p><a href=\"https:\/\/arstechnica.com\/?p=1706068#p3\" rel=\"noopener noreferrer\">Read 13 remaining paragraphs<\/a> | <a href=\"https:\/\/arstechnica.com\/?p=1706068&amp;comments=1\" rel=\"noopener noreferrer\">Comments<\/a><\/p><div>\n<a href=\"http:\/\/feeds.arstechnica.com\/~ff\/arstechnica\/index?a=0Gl3tL6GoAw:yKsTI8E4aUk:V_sGLiPBpWU\" rel=\"noopener noreferrer\"><img src=\"http:\/\/feeds.feedburner.com\/~ff\/arstechnica\/index?i=0Gl3tL6GoAw:yKsTI8E4aUk:V_sGLiPBpWU\" border=\"0\" referrerpolicy=\"no-referrer\"\/><\/a> <a href=\"http:\/\/feeds.arstechnica.com\/~ff\/arstechnica\/index?a=0Gl3tL6GoAw:yKsTI8E4aUk:F7zBnMyn0Lo\" rel=\"noopener noreferrer\"><img src=\"http:\/\/feeds.feedburner.com\/~ff\/arstechnica\/index?i=0Gl3tL6GoAw:yKsTI8E4aUk:F7zBnMyn0Lo\" border=\"0\" referrerpolicy=\"no-referrer\"\/><\/a> <a href=\"http:\/\/feeds.arstechnica.com\/~ff\/arstechnica\/index?a=0Gl3tL6GoAw:yKsTI8E4aUk:qj6IDK7rITs\" rel=\"noopener noreferrer\"><img src=\"http:\/\/feeds.feedburner.com\/~ff\/arstechnica\/index?d=qj6IDK7rITs\" border=\"0\" referrerpolicy=\"no-referrer\"\/><\/a> <a href=\"http:\/\/feeds.arstechnica.com\/~ff\/arstechnica\/index?a=0Gl3tL6GoAw:yKsTI8E4aUk:yIl2AUoC8zA\" rel=\"noopener noreferrer\"><img src=\"http:\/\/feeds.feedburner.com\/~ff\/arstechnica\/index?d=yIl2AUoC8zA\" border=\"0\" referrerpolicy=\"no-referrer\"\/><\/a>\n<\/div>","protected":false},"excerpt":{"rendered":"<p>Enlarge (credit: VGrigas (WMF))<br \/>\nResearchers have developed and published a proof-of-concept expl&#8230;<\/p>\n<p> <a href=\"https:\/\/pappp.net\/?p=31946\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[226],"tags":[],"class_list":["post-31946","post","type-post","status-publish","format-standard","hentry","category-news-2"],"_links":{"self":[{"href":"https:\/\/pappp.net\/index.php?rest_route=\/wp\/v2\/posts\/31946","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/pappp.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/pappp.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/pappp.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/pappp.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=31946"}],"version-history":[{"count":0,"href":"https:\/\/pappp.net\/index.php?rest_route=\/wp\/v2\/posts\/31946\/revisions"}],"wp:attachment":[{"href":"https:\/\/pappp.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=31946"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/pappp.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=31946"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/pappp.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=31946"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}