All Things You Should Know About Selenium, REST API, SOAP UI(Groovy), DevOps, UFT/QTP: #Win10

Friday, 13 September 2024

Microsoft Auto-Update feature grants the administrative privileges to windows machines and servers

Microsoft Auto-Update feature grants the administrative privileges to windows machines and servers

Microsoft Auto-Update has the Elevation of Privilege Vulnerability, and with the help of this, any attacker is possible exploit and login as windows administrator through a malicious request.

Microsoft Auto-Update privilege elevation vulnerability gives admin privileges in Windows 10, Windows 11, Windows Server, and in the cloud servers.

Utilizing this venerability, it is possible to configure group policies to prevent 'Standard' users from performing MSI installer operations, elevate their privileges to help spread laterally within the network and download arbitrary or any data from the network.

It is recommended to temporarily disable the Microsoft Auto-Update feature until a patch for this vulnerability is released or be cautious with the malicious requests, if the vulnerability already exists in the machines or servers.