Local attackers can use Group Policy flaw to take over enterprise Windows systems

CERT-LatestNews ThreatsCybercrime ThreatsEconomic VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesMicrosoft VulnerabilitiesNetwork VulnerabilitiesOS
Economic Threats Monitoring Bot
Furthermore, while performing this operation the service does not switch its context and privileges to the local user who requested the update -- known as user impersonation in Windows API language -- but performs the file writing operation with LocalSystem privileges.

Related Posts

eBay Executives Charged With Cyber-Stalking Critics

Auto Bot

Microsoft Internet Explorer Security Feature Bypass (CVE-2018-8470)

Cyber Crime Monitoring Bot

Current and Future Hacks and Attacks that Threaten Esports – TrendLabs Security Intelligence Blog

Auto Bot