Security News > 2021 > August > Windows 10 Admin Rights Gobbled by Razer Devices
A zero-day bug in the device installer software for Razer peripherals - be they a Razer mouse, keyboard or any device that uses the Synapse utility - gives the plugger-inner full admin rights on Windows 10, just by inserting a compatible peripheral and downloading Synapse.
Need local admin and have physical access?- Plug a Razer mouse- Windows Update will download and execute RazerInstaller as SYSTEM- Abuse elevated Explorer to open Powershell with Shift+Right click.
The plug-and-play Razer Synapse installation then allows users to gain SYSTEM privileges on the Windows device lickety-split, since, as part of the setup routine, it opens an Explorer window that prompts the user to specify where the driver should be installed.
Exe executable was launched via a Windows process running with SYSTEM privileges, the Razer installation program inherited those same Admin privileges.
BleepingComputer had a Razer mouse kicking around, so the outlet tested out the vulnerability and quickly confirmed the zero day, managing to gain SYSTEM privileges in Windows 10 within about 2 minutes of plugging it in.
As BleepingComputer pointed out, it can be as easy as spending ~$24 on a Razer mouse and plugging it into Windows 10 to become an admin.
News URL
https://threatpost.com/windows-10-admin-rights-razer-devices-mouse-peripherals/168855/
Related news
- Windows 10 KB5044273 update released with 9 fixes, security updates (source)
- Windows 10 KB5045594 update fixes multi-function printer bugs (source)
- Microsoft fixes Windows 10 bug causing apps to stop working (source)
- Windows 10 KB5046613 update released with fixes for printer bugs (source)
- Microsoft just killed the Windows 10 Beta Channel again (source)
- Microsoft just killed the Windows 10 Beta Channel for good (source)
- Microsoft pulls WinAppSDK update breaking Windows 10 app uninstalls (source)
- Windows 10 KB5046714 update fixes bug preventing app uninstalls (source)