Windows 0-day drops the same day Microsoft releases record number of patches
4 hours ago
- #Windows Security
- #Privilege Escalation
- #Zero-day Exploit
- A researcher released exploit code enabling low-privilege Windows accounts to modify admin accounts.
- The exploit, HiveLegacy, targets a Windows User Profile Service vulnerability and allows unauthorized registry changes.
- It requires knowledge of another user's credentials and a third account's username on the same machine.