Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11How to fix errors for ACL and SAM vulnerabilities on Windows
The recently discovered CVE-2021-36934 vulnerability is an important issue because it provides elevated privileges to the bad guys.
The elevated privilege vulnerability exists because Access Control Lists (ACLs) are too permissive on many system files, including the Security Accounts Manager (SAM) database. An attacker who successfully exploited this vulnerability could run arbitrary code with system privileges. They can then install programs, view, change or delete data; or create a new account with full user rights.
To exploit the vulnerability, the bad guys must have access to the system and run the code in the first place. Microsoft is still investigating the issue and more data is expected to be added to the CVE. However, for now, users can try 2 methods to disable the vulnerable part of the operating system.
According to the official version, no vulnerabilities were exploited and Microsoft was quick enough to come up with an alternative. However, the company also mentioned that exploits using the vulnerability are more likely to happen and users must follow the workaround as quickly as possible.
How to fix
First, you have to run Command Prompt or Windows PowerShell command execution application and run below command to limit access to %windir%system32config folder.
With Command Prompt: icacls %windir%system32config*.* /inheritance:e
With PowerShell: icacls $env:windirsystem32config*.* /inheritance:e
In the second step, the user must delete the copy of the Volume Shadow Copy Service. And will also require deleting System Restore's restore points.
Once they have been removed and access to the %windir%system32config folder is restricted, the user can create another System Restore point.
The problem with the workaround is that the user will lose access to existing System Restores. That won't be a problem for those with another form of backup, but individuals or organizations that rely entirely on System Restore points will be at risk.
It should be noted that the current workaround is a temporary workaround. Microsoft will likely release a patch after thoroughly investigating the issue.
Kareem WintersYou should read it
- Network security 2009: Disturbing computer virus problems
- Watch out for new dangerous viruses similar to WannaCry
- Network security challenges in 2014
- 10 most famous hacks of all time
- Thousands of images on Google are infected with malicious code
- Windows users need to update this software immediately
- 100 hackers were arrested for the super-dangerous BlackShades malicious code
- Find bug in Emotet malware, prevent it from spreading for 6 months
May be interested
- There is a new zero-day vulnerability in Windows
the vulnerability posted on twitter and on github also has a poc that demonstrates one of the ways this error exploits the machine, making it impossible to boot. - Microsoft released a series of non-bootable patches for Windows 10 on PCs with AMD chipsin order to fix errors that cannot be booted on an amd-based computer with windows 10 installed, microsoft sent users an official update after blocking updates that addressed the previous meltdown and specter vulnerabilities.
- How to fix boot errors on Windows 8if you are using windows 8, you will probably notice that this operating system gives an impressive boot time, much faster than previous windows versions. that's because in windows 8, microsoft applies a new boot feature called 'quick start', which is a combination of cold boot mode and hibernate windows startup.
- IBM developed a new technology to patch security holestop security researchers at ibm have recently developed a new technique to etch almost entirely the impact of security vulnerabilities before they are actually found.
- The Mail app on iOS has serious vulnerabilitiessecurity researchers at zecops have discovered two serious vulnerabilities that exist on the default mail application pre-installed on millions of iphones and ipads.
- How to fix some errors when updating Windows 10besides the exciting new features, the windows 10 update also has some problems during and after installing the software. read this article to learn how to fix some of the most common problems of this update.
- HP publishes a series of critical vulnerabilities in the Teradici PCoIP protocolhp has warned of serious security vulnerabilities in the teradici pcoip client and agent for windows, linux, and macos. these vulnerabilities affect 15 million endpoints.
- Intel has overcome serious vulnerabilities in graphics drivers for Windowsintel recently announced that it has successfully overcome 20 security vulnerabilities in intel graphics driver for windows.
- How to fix Netflix errors that don't work on Windows 10netflix applications on windows 10 will sometimes encounter some problems, making it impossible to open the application to watch videos.
- How to fix windows 10 errorssummary of the latest and most effective ways to fix windows 10 errors, this article will guide you in detail how to fix windows 10 errors to help your system work the best.
System
- Microsoft released an emergency patch for the app crash caused by the KB5005565 update
- How to take screenshots on Lenovo laptops
- Steps to install Fonts for Windows 11
- Microsoft allows removing Microsoft account passwords, starting the passwordless trend
- Ubuntu 21.10 outperforms Windows 10/11 in various performance tests
- Steps to disable Task Manager on Windows
Microsoft released an emergency patch for the app crash caused by the KB5005565 update
How to take screenshots on Lenovo laptops
Steps to install Fonts for Windows 11
Microsoft allows removing Microsoft account passwords, starting the passwordless trend
Ubuntu 21.10 outperforms Windows 10/11 in various performance tests
Steps to disable Task Manager on Windows