Results 1 to 6 of 6

Thread: Google reveals actively exploited unpatched Windows flaw

  1. #1
    HEXUS.admin
    Join Date
    Apr 2005
    Posts
    28,447
    Thanks
    0
    Thanked
    1,849 times in 629 posts

    Google reveals actively exploited unpatched Windows flaw

    It gave Microsoft 10 days notice but there has been no fix released as yet.
    Read more.

  2. #2
    RGB Champion Ttaskmaster's Avatar
    Join Date
    Nov 2013
    Location
    Reading, UK
    Posts
    4,996
    Thanks
    193
    Thanked
    533 times in 446 posts
    • Ttaskmaster's system
      • Motherboard:
      • Asus X99-PRO
      • CPU:
      • i7 5960X o/c to 4.summat
      • Memory:
      • 16GB Corsair DDR4 somethingorother
      • Storage:
      • Samsung Evo 120GB and Seagate Baracuda 2TB
      • Graphics card(s):
      • Gigabyte G1 GTX980Ti
      • PSU:
      • EVGA Supernova G2 1000W
      • Case:
      • Phankecks Enthoo Luxe perspex window
      • Operating System:
      • Win10 64 Home
      • Monitor(s):
      • Acer Predator XB270HU 1440 IPS GSync
      • Internet:
      • BT 0.7Mbps 'In The Sticks' version

    Re: Google reveals actively exploited unpatched Windows flaw

    "The Windows vulnerability is a local privilege escalation in the Windows kernel that can be used as a security sandbox escape. It can be triggered via the win32k.sys system call NtSetWindowLongPtr() for the index GWLP_ID on a window handle with GWL_STYLE set to WS_CHILD. Chrome's sandbox blocks win32k.sys system calls using the Win32k lockdown mitigation on Windows 10, which prevents exploitation of this sandbox escape vulnerability."
    Can someone put that in simple English please?
    I tried it in Google Translate, but got nothing...

  3. #3
    Senior Member
    Join Date
    Jun 2015
    Posts
    223
    Thanks
    3
    Thanked
    15 times in 10 posts

    Re: Google reveals actively exploited unpatched Windows flaw

    Quote Originally Posted by Ttaskmaster View Post
    "The Windows vulnerability is a local privilege escalation in the Windows kernel that can be used as a security sandbox escape. It can be triggered via the win32k.sys system call NtSetWindowLongPtr() for the index GWLP_ID on a window handle with GWL_STYLE set to WS_CHILD. Chrome's sandbox blocks win32k.sys system calls using the Win32k lockdown mitigation on Windows 10, which prevents exploitation of this sandbox escape vulnerability."
    Can someone put that in simple English please?
    I tried it in Google Translate, but got nothing...
    A program running in a protected/sandboxed environment can escape and run code as the user or as an administrator by exploiting a bug in the way Windows handles window settings.

    It doesn't work in Chrome because Chrome blocks the method and subsystem used to set window settings.

  4. Received thanks from:

    Ttaskmaster (01-11-2016)

  5. #4
    RGB Champion Ttaskmaster's Avatar
    Join Date
    Nov 2013
    Location
    Reading, UK
    Posts
    4,996
    Thanks
    193
    Thanked
    533 times in 446 posts
    • Ttaskmaster's system
      • Motherboard:
      • Asus X99-PRO
      • CPU:
      • i7 5960X o/c to 4.summat
      • Memory:
      • 16GB Corsair DDR4 somethingorother
      • Storage:
      • Samsung Evo 120GB and Seagate Baracuda 2TB
      • Graphics card(s):
      • Gigabyte G1 GTX980Ti
      • PSU:
      • EVGA Supernova G2 1000W
      • Case:
      • Phankecks Enthoo Luxe perspex window
      • Operating System:
      • Win10 64 Home
      • Monitor(s):
      • Acer Predator XB270HU 1440 IPS GSync
      • Internet:
      • BT 0.7Mbps 'In The Sticks' version

    Re: Google reveals actively exploited unpatched Windows flaw

    OK, yeah, that's a little concerning.

  6. #5
    Senior Member
    Join Date
    Aug 2006
    Posts
    1,307
    Thanks
    8
    Thanked
    65 times in 57 posts

    Re: Google reveals actively exploited unpatched Windows flaw

    While obviously the issue with Windows does need fixing I'd actually say what Google is doing announcing it after 7 days is worse because we all know it will take more than that to fix an os problem.

    It's also a bit hypocritical to be announcing Windows issues when there's plenty of unpatched versions of their own OS out in the wild with just as serious consequences.

  7. Received thanks from:

    Saracen (02-11-2016)

  8. #6
    Registered+
    Join Date
    Aug 2016
    Posts
    46
    Thanks
    0
    Thanked
    1 time in 1 post

    Re: Google reveals actively exploited unpatched Windows flaw

    Quote Originally Posted by LSG501 View Post
    While obviously the issue with Windows does need fixing I'd actually say what Google is doing announcing it after 7 days is worse because we all know it will take more than that to fix an os problem.

    It's also a bit hypocritical to be announcing Windows issues when there's plenty of unpatched versions of their own OS out in the wild with just as serious consequences.
    I have to agree. While the bug in Windows is serious, you still need malware to be downloaded and executed on victim computer. I _guess_ decent antivirus will be able to detect such a malware quite soon. Having a week to alter kernel, run all tests, validate on multitude of environments Windows run on, sign and publish... There is no chance to do that in a week... And the very people screaming about 'end-of-world' security hole would be screaming about 'broken-and-ever-bugged' system. Kernel is not a ms paint where if you screw something out, it's no biggy, it really needs time to be done properly and it's way too critical component to haste it.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •