• Guest, The rules for the P & N subforum have been updated to prohibit "ad hominem" or personal attacks against other posters. See the full details in the post "Politics and News Rules & Guidelines."

News [toms] win10(11) vulnerability allows admin access

gorobei

Diamond Member
Jan 7, 2007
3,186
332
126
The problem lies in Microsoft's security rules assigned to the Windows Registry and the Security Account Manager. Both for some reason have reduced restrictions allowing any local user to fully access the files without administrator privileges.

This is even more critical of the Security Account Manager which holds all the account data -- including passwords -- of all users on the PC. Giving local users access to this private information can allow attackers to log into one of the administrator accounts for full control of the PC.
details are a little vague.
no fix but a workaround is to delete shadowcopy. not sure if this requires hardware access.
 

ASK THE COMMUNITY