from the get-your-free-patches-while-they-last! dept.
Windows PsExec zero-day vulnerability gets a free micropatch:
A free micropatch fixing a local privilege escalation (LPE) vulnerability in Microsoft's Windows PsExec management tool is now available through the 0patch platform.
PsExec is a fully interactive telnet-replacement that allows system admins to execute programs on remote systems. PsExec tool is also integrated into and used by enterprise tools to remotely launch executables on other computers.
This PsExec zero-day is caused by a named pipe hijacking (also known as named pipe squatting) vulnerability which allows attackers to trick PsExec into re-opening a maliciously created named pipe and giving it Local System permissions.
After successfully exploiting the bug, threat actors will be able to execute arbitrary processes as Local System which effectively allows them to take over the machine.
[...] "This vulnerability allows an attacker who can already run code on your remote computer as a non-admin (e.g., by logging in as a regular Terminal Server user, or establishing an RDP session as a domain user, or breaking into a vulnerable unprivileged service running on the remote computer) to elevate their privileges to Local System and completely take over the machine as soon as anyone uses PsExec against that machine," Kolsek said.
"For home users and small businesses, this is probably not a high-priority threat, while for large organizations it may be."
(Score: 0) by Anonymous Coward on Monday January 11 2021, @03:32PM
A couple of minutes ago the top story was this (screen scraped from cache, pasted below), but now it's gone? What happened?? When I tried to read the rest I got a message like "nothing to see here".
-----------------------------
Politics: What a Week It Was... Now What? Where Do We Go From Here?
posted by martyb on Monday January 11, @10:28AM Printer-friendly
/dev/random
martyb [soylentnews.org] writes:
It's been one heck of a week:
Against the backdrop of record-setting numbers of COVID-19 deaths and infections in the US and around the world, there was turmoil in Washington, DC. As court cases surrounding the presidential election were filed and dismissed, a close race in Georgia was coming down to the wire and with it control of the US Senate. While the US Congress was completing the Electoral College tally and certification, a mob formed outside — and eventually broke into — the US Capitol. This resulted in a 4-hour lock-down. Eventually, the intrusion was repelled, and the Electoral College count was completed: Joseph Robinette Biden Jr. was confirmed as the 46th president of the United States of America.
Conspiracy theories have flourished. Propaganda has streamed forth across multiple platforms. Tempers have flared.
And SoylentNews has been there for you. And have you ever spoken up! Two of the most-commented stories [soylentnews.org] in the site's nearly seven-year history were posted in just the past week!
Insomuch as the activities in the US Capitol were far from the US' most shining moments, neither were things all unicorns and rainbows on SoylentNews. Tempers flared. People were attacked and called names. I even accidentally deleted a story and the 17 comments attached to it! [NB: Problem addressed: the delete button no longer appears by default for our editors.]
IRC (Internet Relay Chat):
[Continues...]