A series of security holes can be found in most Windows networks, it’s not strange. And it’s the main reason why Microsoft pushes new updates to you. Knowing the existence of the security threat and taking actions immediately to fix are two prerequisites for keeping your data intact. Here, I’ll introduce a new security weakness to you.
To be honest, no network is completely immune to the Windows vulnerabilities. This can be called a law of nature. The security risks on the Internet are both read and unavoidable. Indeed, there are many posts and articles telling you how to prevent virus, malware, and other security risks. Windows security weakness can never be eradicated completely.
Click to see the professional Ransomware Prevention Policy.
Google Researcher Found New Type of Windows Security Weakness
A Google Project Zero researcher has found a new kind of Windows security vulnerability and has reported this. Though there is no solid evidence to show that the new security threat will lead to any risks to users, Microsoft has responded this: it will offer patch to this bug.
Generally, the unusual and complicated weakness is easy to be neglected by people. The root reasons is: Microsoft will release new update to patch the operating system security vulnerabilities since Windows XP. And this newly discovered vulnerability is planned to be patched in the next version of Windows 10. But what’s the meaning for patching it if it’s not a clear threat?
Another famous Windows vulnerability found in 2018:
Details on the New Windows Security Vulnerability
Back to 2016, James Forshaw – the Project Zero researcher – found a kernel-mode drive Elevation of Privileges (EoP) issue. According to James Forshaw, this issue is relatively simple and has finally been fixed by Microsoft. It is known as CVE-2016-3219.
Yet, one year later (in 2017), he felt he’d come across a larger logic flaw by accident. By taking advantage of it, malware may be able to run in user mode (this limits privileges). In this way, it can sneak privileges through the interaction of Microsoft and the Windows I/O manager subsystem and third-party kernel-mode drivers. But, he can’t create a working proof-of-concept.
Microsoft’s Response towards This Issue
This forces him to contact Microsoft in order to get help. After analysis, Microsoft finally decided be highly alert and patch the vulnerability anyway.
- There are many third-party drivers that malicious people could take advantage of.
- Such bug is so new and unexpected that it may bring potential problems.
Solutions to fix the problem:
- A full-scale API change seems to be an effective and feasible way to patch the vulnerability. Yet, this is discarded since it may bring damage to existing software.
- Microsoft plans to attract draw attention to this threat by updating its programming documentation, hoping that the developers will review the code.
Certainly, Microsoft will issue a workable fix in the next Windows 10 April 2019 Update.
Debate on 90-day Disclosure Timetable
Though the two companies – Google and Microsoft– had a bitter quarrel over Google’s strict 90-day disclosure timetable, Microsoft lavishes praise on Forshaw. His words are very warm:
One researcher who consistently reports high-quality, interesting vulnerabilities to us is James Forshaw of Google Project Zero.
Yet, James Forshaw, the Project Zero researcher, hasn’t given up on digging the specific elements of the weakness:
It’s worth noting that while I applied the standard 90-day disclosure deadline to the SMB server report, I didn’t apply an explicit deadline to the bug class report.
Till now, many Windows 10 security vulnerabilities have been found and Microsoft has provided patches to fix most of them.
There are the top 10 famous security vulnerabilities of Windows 10.
If you have discovered any Windows 10 vulnerabilities in 2019, please post your comment below.
User Comments :