Did you know that Cortana could allow hackers to break into a locked Windows 10 system and execute malicious commands with the user's privileges. MS has released a patch for this vulnerabiltity. Now, it your responsibility to apply the patch.
An Elevation of Privilege vulnerability exists when Cortana retrieves data from user input services without consideration for status," Microsoft explains. "An attacker who successfully exploited the vulnerability could execute commands with elevated permissions.
Microsoft has classified the flaw as "important" because exploitation of this vulnerability requires an attacker to have physical or console access to the targeted system and the targeted system also needs to have Cortana enabled.
In worst case scenario, hackers could also compromise the system completely if the user has elevated privileges on the targeted system.
https://thehackernews.com/2018/06/cortana-hack-windows-password.html
No comments:
Post a Comment