Home > Article > Technology peripherals > Microsoft reveals new vulnerability! Win10/11 is infected, where will system security go?
[ITBEAR] News on August 10th. Recently, at the Black Hat conference, an important security discovery about the Windows operating system attracted widespread attention. According to Alon Leviev, a member of the security research team SafeBreach Labs, there is a serious security vulnerability in Windows 10 and Windows 11 systems that can be exploited to downgrade the system and resurrect security weaknesses that have been patched by Microsoft. Specifically, this vulnerability allows an attacker to control the downgrade mechanism of Windows Update and control the update operation list by tampering with a core key value in the update process, thereby downgrading the system. According to ITBEAR, the seriousness of this vulnerability is that even if Microsoft has released patches for certain security issues, attackers can still use this vulnerability to roll back the system to an older version that contains known vulnerabilities. Test results show that by exploiting this vulnerability, attackers can downgrade multiple core components including drivers, system programs, dynamic link libraries and even the Windows NT kernel. What's more serious is that researchers also discovered strategies that can downgrade Windows security components, which covers key security facilities such as the security kernel, credential manager, and virtualization security mechanism (VBS). It is worth noting that although this vulnerability itself does not directly give hackers the ability to remotely access the system, if the attacker has obtained preliminary access rights, they can use this vulnerability to dig out and exploit other known vulnerabilities, thus Take full control of affected systems.
The above is the detailed content of Microsoft reveals new vulnerability! Win10/11 is infected, where will system security go?. For more information, please follow other related articles on the PHP Chinese website!