SandboxEscaper is back with a new Zero-Day Exploit

SandboxEscaper is back with a new Privilege Escalation Exploit.

On this occasion, she defeated a patch which Microsoft released in April for CVE-2019-0841, and as usual, released the exploit with proof-of-concept exploit code.

Thankfully the exploit requires code running on a local machine, vs a remote exploit, but will allow hackers with limited privileges to gain full control of a protected file, such as WIN.ini in her demo exploit.

CERT/CC has confirmed the exploit works on Windows 10 versions 1809 and 1903 running the latest security updates from Microsoft.

A video of the exploit can be seen below:

SandboxEscaper has so far released 9 zero-day exploits since August 2018, and according to a somewhat unhinged message on her website still has another up her sleeve.

Via BleepingComputer

Microsoft Windows Security Updates September 2020 overview
Microsoft Windows Security Updates February 2019 overview
A new Minecraft: Bedrock Edition patch update is rolling out to all players
Microsoft Windows Security Updates November 2022 overview
Microsoft Windows Security Updates November 2020 overview
Microsoft Windows Security Updates June 2019 overview
Microsoft Windows Security Updates December 2019 overview
The ultimate guide to fixing problems with the May 2020 Update
Microsoft Windows Security Updates April 2018 release overview
Microsoft Windows Security Updates July 2021 overview