You can gain admin rights of Windows 10 just by plugging in a Razer mouse
The PrintNightmare vulnerability makes the hacker community and security researchers pay attention to vulnerabilities that appear on Microsoft products when installing third-party drivers.
Recently, researcher Jonhat discovered a new vulnerability that allows to gain admin rights of Windows 10 just by plugging a Razer mouse into the computer.
Specifically, when plugging in a Razer mouse or the USB end of a Razer wireless mouse, Windows Update will download and execute the RazerInstaller driver under admin rights. Next, Razer's driver installer and device customization software allows users to open an Explorer window to choose where to store the installation files.
On that Explorer window, just press Shift + Right-click and a Powershell window with admin rights will be displayed. Basically, a skilled hacker can use a Powershell window with admin rights to do whatever he wants.
In addition, if the user performs the installation and specifies the directory to save the installation file in a user-controllable path such as the Desktop, the installer will save a service binary there. This binary can be edited to execute code before the user logs in on startup.
Hackers don't even need a real Razer mouse because the USB ID can be spoofed easily.
Jonhat said he tried to contact Razer but was unsuccessful. So he decided to make it public. It is likely that Microsoft will soon recognize the problem and proceed to remove the Razer driver from Windows Update. However, Razer's involvement is still required to edit their drivers before hackers can exploit this vulnerability.
You should read it
- How to set up always opening applications with admin rights on Windows 11
- Losing Admin permissions on Windows 10 / 8.1, this is a fix
- How to assign Administrator permissions on a Windows 7 computer?
- How to launch Admin rights application for User account in Windows?
- How to grant Admin rights to a User in Win 10
- How to activate the hidden Admin account on Windows 7/8/10
- How to run Task Manager with admin rights in Windows 11
- Instructions to enable Admin Share on Windows 10/8/7
- 4 ways to run the software using administrative rights in Windows
- How to open the pin application on the Taskbar Administrator with Windows 10
- How to open and run cmd with Admin permissions on Windows
- Analyze DLL hijacking attacks
Maybe you are interested
Enable or disable Secure Boot via the ASUS UEFI BIOS utility How to temporarily lock the computer when entering the wrong password many times How to Add a Password to a .Bat File How to use ASCII characters to create strong passwords How to prevent DDoS attack with Nginx Techniques to exploit buffer overflows: Organize memory, stack, call functions, shellcode