Security News > 2017 > March > Fileless UAC Bypass Uses Windows Backup and Restore Utility (Threatpost)

Fileless UAC Bypass Uses Windows Backup and Restore Utility (Threatpost)

2017-03-27 16:13

Researcher Matt Nelson disclosed another Windows UAC bypass, this one abusing the sdclt.exe backup and restore utility to execute a payload without triggering an alert.

News URL

http://threatpost.com/fileless-uac-bypass-uses-windows-backup-and-restore-utility/124579/

#backup #bypass #threatpost #windows

Related news

Broadcom warns of authentication bypass in VMware Windows Tools (source)
Update VMware Tools for Windows Now: High-Severity Flaw Lets Hackers Bypass Authentication (source)
New Windows 11 trick lets you bypass Microsoft Account requirement (source)
Windows 11 Forces Microsoft Account Sign In & Removes Bypass Trick Option (source)

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.