DLL side-loading vulnerability in Microsoft signed autoelevate CompMgmtLauncher.exe - unfortunately the manifest on this file changed in Windows 10 1703 so it can no longer be used to bypass UAC. The side loading doesn't trigger in 1507-1607, this maybe exploitable in some situations but is being discarded as a dead end. There is one more of these that we've found but have been unable to exploit. This one is only useful to sideload malware in a signed executable and not for UAC.

I see a lot of new faces here, which means some of you have been breaking the first rule of Fight Club.

Have you heard of Off-Grid the game? It's an awesome hackable hacktivist inspired video game which features me as a NPC! Learn more about the game at www.offgridthegame.com

"Now a question of etiquette, as I pass do I give you the crotch or the ass" -- Tyler Durden

Show older
Mastodon

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!