C-Suite On Deck
Keep me plugged in with the best
Join thousands of your peers and receive our weekly newsletter with the latest news, industry events, customer insights, and market intelligence.
I agree to the
terms of service
PLEASE CORRECT THE FOLLOWING:
Please Enter Some Keywords
New Windows Zero-day Bug Allows Deleting Arbitrary Files
A security researcher released exploit code for an unpatched bug in Windows that could allow an attacker with limited privileges to delete system files. Exploiting the bug requires winning a race condition on the machine, so a successful exploit can take some time as it will retry until it succeeds, the researcher who uses the online handle SandboxEscaper said in the release notes. This is the fourth Windows zero-day vulnerability publicly disclosed by SandboxEscaper in the past four months and the second in December. Two weeks ago, the researcher published details about a vulnerability that could be exploited from a limited account to read files that shouldn’t normally be accessible to that account. That flaw could lead to sensitive information disclosure. The new bug can be used to crash systems by deleting critical system files. For example, the researcher’s proof-of-concept exploit deletes a file called pci.sys that’s required during the boot process.
I'm for real
Enter your email once to access all our information and resources.
(Your email address is required so we know you're a real person)
By downloading this content, you give permission for your contact information to be shared with the content provider who may contact you in regards to the content.