Security News > 2020 > October > Windows kernel vulnerability disclosed by Google's Project Zero after bug exploited in the wild by hackers
Google's Project Zero bug-hunting team has disclosed a Windows kernel flaw that's being actively exploited by miscreants to gain control of computers.
The web giant's bug report was privately disclosed to Microsoft on October 22, and publicly revealed just seven days later, after it detected persons unknown exploiting the programming blunder.
The privilege-escalation issue was identified by Mateusz Jurczyk and Sergei Glazunov of Google Project Zero.
"The Windows Kernel Cryptography Driver exposes a DeviceCNG device to user-mode programs and supports a variety of IOCTLs with non-trivial input structures," the bug report explains.
It can be exploited to break out of Chrome's sandbox, and gain control of the victim's PC. The Google researchers have posted PoC exploit code tested on Windows 10 1903.
News URL
https://go.theregister.com/feed/www.theregister.com/2020/10/30/windows_kernel_zeroday/
Related news
- Microsoft waited 6 months to patch actively exploited admin-to-kernel vulnerability (source)
- Hackers abuse Windows SmartScreen flaw to drop DarkGate malware (source)
- Hackers exploit Windows SmartScreen flaw to drop DarkGate malware (source)
- Researchers Detail Kubernetes Vulnerability That Enables Windows Node Takeover (source)
- Hackers Using Sneaky HTML Smuggling to Deliver Malware via Fake Google Sites (source)
- CISA Warns: Hackers Actively Attacking Microsoft SharePoint Vulnerability (source)
- Critical 'BatBadBut' Rust Vulnerability Exposes Windows Systems to Attacks (source)
- Researchers Uncover Windows Flaws Granting Hackers Rootkit-Like Powers (source)
- Microsoft: APT28 hackers exploit Windows flaw reported by NSA (source)
- Microsoft: APT28 hackers exploit Windows flaw reported by NSA (source)