<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	 xmlns:media="http://search.yahoo.com/mrss/" >

<channel>
	<title>escalates &#8211; AnonyViet &#8211; English Version</title>
	<atom:link href="https://en.anonyviet.com/tag/escalates/feed/" rel="self" type="application/rss+xml" />
	<link>https://en.anonyviet.com</link>
	<description>The most popular website for sharing information technology, computer networks, and security knowledge. Stay up to date with the hottest news and tips</description>
	<lastBuildDate>Wed, 25 Jan 2023 08:19:43 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=7.0.1</generator>

<image>
	<url>https://en.anonyviet.com/wp-content/uploads/2023/01/cropped-ico-logo-75x75-1.png</url>
	<title>escalates &#8211; AnonyViet &#8211; English Version</title>
	<link>https://en.anonyviet.com</link>
	<width>32</width>
	<height>32</height>
</image> 
	<item>
		<title>Tool InstallerFileTakeOver escalates Admin privileges on Windows 10/11</title>
		<link>https://en.anonyviet.com/tool-installerfiletakeover-escalates-admin-privileges-on-windows-10-11/</link>
					<comments>https://en.anonyviet.com/tool-installerfiletakeover-escalates-admin-privileges-on-windows-10-11/#respond</comments>
		
		<dc:creator><![CDATA[AnonyViet]]></dc:creator>
		<pubDate>Wed, 25 Jan 2023 08:19:43 +0000</pubDate>
				<category><![CDATA[Security]]></category>
		<category><![CDATA[Admin]]></category>
		<category><![CDATA[escalates]]></category>
		<category><![CDATA[InstallerFileTakeOver]]></category>
		<category><![CDATA[Privileges]]></category>
		<category><![CDATA[tool]]></category>
		<category><![CDATA[Windows]]></category>
		<guid isPermaLink="false">https://en.anonyviet.com/?p=2729</guid>

					<description><![CDATA[On November 9, Microsoft found a security flaw with code CVE-2021-41379 that allows users to delete any file on Windows without admin rights. But after releasing patches, it seems they haven&#8217;t patched them properly. And a github user took advantage of them to give us admin rights. Let&#8217;s find out with us! Join the channel [&#8230;]]]></description>
										<content:encoded><![CDATA[<p></p>
<div id="ftwp-postcontent">
<p><strong>On November 9, Microsoft found a security flaw with code CVE-2021-41379 that allows users to delete any file on Windows without admin rights.  But after releasing patches, it seems they haven&#8217;t patched them properly.  And a github user took advantage of them to give us admin rights.  Let&#8217;s find out with us!</strong></p>
<div class="code-block code-block-16" style="margin: 8px 0; clear: both;">
<div align="center">
<table class=" aligncenter" style="background-color: #c0c0c0; border-collapse: collapse; width: 59.9985%;">
<tbody>
<tr>
<td style="width: 100%; text-align: center;"><span style="font-size: 12pt;"><strong>Join the channel <span style="color: #0000ff;">Telegram</span> of the <span style="color: #008080;">AnonyViet </span> 👉 <span style="text-decoration: underline;"><a target="_blank" href="https://en.anonyviet.com/next-link?url=https%3A%2F%2Ft.me%2Fanonyvietchat" class="local-link" rel="noopener">Link</a></span>  👈</strong></span></td>
</tr>
</tbody>
</table>
</div>
</div>
<h2 id="ftoc-lo-hong-cve-2021-41379" class="ftwp-heading">Vulnerability CVE-2021-41379</h2>
<p>Vulnerability CVE-2021-41379 was discovered on October 8 and has a cvss (Common Vulnerability Scoring System) score of approximately 5.5 &#8211; 7.8 and this bug is called &#8220;Windows Installer Elevation of Privilege Vulnerability&#8221;.  This error allows users to delete files anywhere on the computer without requiring admin rights.  The only thing to do is run the code as a regular user (without admin rights) to be able to execute.  It is worth mentioning that all versions of Windows suffer from this error (including Window 11 and Window Server).</p>
<p><a target="_blank" href="https://en.anonyviet.com/next-link?url=https%3A%2F%2Fanonyviet.com%2Fwp-content%2Fuploads%2F2021%2F11%2Fh21-562x321-1.jpg" rel="noopener" class="local-link"><img post-id="2729" fifu-featured="1" fetchpriority="high" decoding="async" class="aligncenter size-full wp-image-37408" src="https://anonyviet.com/wp-content/uploads/2021/11/h21-562x321-1.jpg" alt="Tool InstallerFileTakeOver escalates Admin privileges on Windows 10/11" title="Tool InstallerFileTakeOver escalates Admin privileges on Windows 10/11" width="562" height="321" srcset="https://anonyviet.com/wp-content/uploads/2021/11/h21-562x321-1.jpg 562w, https://anonyviet.com/wp-content/uploads/2021/11/h21-562x321-1-300x171.jpg 300w" sizes="(max-width: 562px) 100vw, 562px" title="Tool InstallerFileTakeOver escalates Admin privileges on Windows 10/11 11"/></a></p>
<p>And after more than 2 months, this November, Microsoft has released an update to patch CVE-2021-41379 for all operating systems still supported by Microsoft.  But just yesterday (November 22), a Github user posted a software that can use this bug after they have been patched.  Let&#8217;s learn about that software!</p>
<p>Read more about errors <a target="_blank" href="https://en.anonyviet.com/next-link/?url=https%3A%2F%2Fmsrc.microsoft.com%2Fupdate-guide%2Fvulnerability%2FCVE-2021-41379" rel="noopener external nofollow" class="ext-link" onclick="this.target='_blank';">CVE-2021-41379</a></p>
<h2 id="ftoc-installerfiletakeover-phan-mem-loi-dung-lo-hong-bao-mat-cve-2021-41379" class="ftwp-heading"><a target="_blank" href="https://en.anonyviet.com/next-link/?url=https%3A%2F%2Fgithub.com%2Fwdchocopie%2FInstallerFileTakeOver" rel="noopener external nofollow" class="ext-link" onclick="this.target='_blank';">InstallerFileTakeOver</a> – software that takes advantage of security vulnerability CVE-2021-41379</h2>
<p>According to <strong>klinix5 </strong>shared on Github, during the analysis of patch CVE-2021-41379, they found this bug is not completely fixed and they found a similar version of it.  Compared to the old bug, the new version is a more serious error.</p>
<p><img decoding="async" loading="lazy" class="size-full wp-image-37386 aligncenter" src="https://anonyviet.com/wp-content/uploads/2021/11/Untitled2-1.jpg" alt="InstallerFileTakeOver" width="1613" height="454" srcset="https://anonyviet.com/wp-content/uploads/2021/11/Untitled2-1.jpg 1613w, https://anonyviet.com/wp-content/uploads/2021/11/Untitled2-1-300x84.jpg 300w, https://anonyviet.com/wp-content/uploads/2021/11/Untitled2-1-1024x288.jpg 1024w, https://anonyviet.com/wp-content/uploads/2021/11/Untitled2-1-768x216.jpg 768w, https://anonyviet.com/wp-content/uploads/2021/11/Untitled2-1-1536x432.jpg 1536w, https://anonyviet.com/wp-content/uploads/2021/11/Untitled2-1-750x211.jpg 750w, https://anonyviet.com/wp-content/uploads/2021/11/Untitled2-1-1140x321.jpg 1140w" sizes="auto, (max-width: 1613px) 100vw, 1613px" title="Tool InstallerFileTakeOver Escalates Admin Privileges on Windows 10/11 12"/></p>
<p>Klinix5 further shared: For InstallerFileTakeOver, they had to make this application work without any external elements or any extension to ensure the software could work 100% at runtime.  And they see this app as proof that bug CVE-2021-41379 hasn&#8217;t been fully fixed yet.</p>
<p>In addition to this application, During development they have created 2 .msi files (windows installation files) and what we see here is just 1 version of them.  klinix5 has revealed to us that the remaining file is capable of bypassing the patch of CVE-2021-41379 and that they will be released in the future.</p>
<p>You can read more <a target="_blank" href="https://en.anonyviet.com/next-link/?url=https%3A%2F%2Fgithub.com%2Fklinix5%2FInstallerFileTakeOver" rel="noopener external nofollow" class="ext-link" onclick="this.target='_blank';">here.</a></p>
<h2 id="ftoc-luu-y-truoc-khi-thuc-hien" class="ftwp-heading">Note before doing</h2>
<p style="text-align: center;"><span style="color: #ff0000;"><strong>Because this is a serious security error, it is only used for reference and learning purposes.  Use on computers not owned by you is not allowed.  Anonyviet will not be responsible for any of your actions.</strong></span></p>
<h2 id="ftoc-huong-dan-su-dung-installerfiletakeover" class="ftwp-heading">InstallerFileTakeOver User Manual</h2>
<p>To be able to experience the whole thing, please create a user without admin rights (select Standard user) and log in with that account!</p>
<p><img decoding="async" loading="lazy" class="size-full wp-image-37384 aligncenter" src="https://anonyviet.com/wp-content/uploads/2021/11/b-6.jpg" alt="To standard user" width="687" height="334" srcset="https://anonyviet.com/wp-content/uploads/2021/11/b-6.jpg 687w, https://anonyviet.com/wp-content/uploads/2021/11/b-6-300x146.jpg 300w" sizes="auto, (max-width: 687px) 100vw, 687px" title="Tool InstallerFileTakeOver escalates Admin privileges on Windows 10/11 13"/></p>
<p><strong>Step 1</strong>: After logging in to the account just created, go to a web browser and download the file <a target="_blank" href="https://en.anonyviet.com/next-link/?url=https%3A%2F%2Fgithub.com%2Fwdchocopie%2FInstallerFileTakeOver%2Farchive%2Frefs%2Fheads%2Fmain.zip" rel="noopener external nofollow" class="ext-link" onclick="this.target='_blank';">here</a></p>
<p><img decoding="async" loading="lazy" class="size-full wp-image-37387 aligncenter" src="https://anonyviet.com/wp-content/uploads/2021/11/a-2-1.jpg" alt="Download the necessary files" width="1149" height="374" srcset="https://anonyviet.com/wp-content/uploads/2021/11/a-2-1.jpg 1149w, https://anonyviet.com/wp-content/uploads/2021/11/a-2-1-300x98.jpg 300w, https://anonyviet.com/wp-content/uploads/2021/11/a-2-1-1024x333.jpg 1024w, https://anonyviet.com/wp-content/uploads/2021/11/a-2-1-768x250.jpg 768w, https://anonyviet.com/wp-content/uploads/2021/11/a-2-1-750x244.jpg 750w, https://anonyviet.com/wp-content/uploads/2021/11/a-2-1-1140x371.jpg 1140w" sizes="auto, (max-width: 1149px) 100vw, 1149px" title="Tool InstallerFileTakeOver escalates Admin privileges on Windows 10/11 14"/></p>
<p><strong>Step 2</strong>: Go to the InstallerFileTakeOver folder > Release > run the file with the .exe extension</p>
<p><img decoding="async" loading="lazy" class="size-full wp-image-37393 aligncenter" src="https://anonyviet.com/wp-content/uploads/2021/11/a-3-1.jpg" alt="Run the file ending in .exe" width="712" height="175" srcset="https://anonyviet.com/wp-content/uploads/2021/11/a-3-1.jpg 712w, https://anonyviet.com/wp-content/uploads/2021/11/a-3-1-300x74.jpg 300w" sizes="auto, (max-width: 712px) 100vw, 712px" title="Tool InstallerFileTakeOver escalates Admin privileges on Windows 10/11 15"/></p>
<p>After you finish running, there will be a CMD screen displayed and that is the CMD that has been granted admin rights.  You can go there and create a new user and log in to get control of the machine or break the computer as you like.</p>
<p><img decoding="async" loading="lazy" class="size-full wp-image-37386 aligncenter" src="https://anonyviet.com/wp-content/uploads/2021/11/Untitled2-1.jpg" alt="InstallerFileTakeOver" width="1613" height="454" srcset="https://anonyviet.com/wp-content/uploads/2021/11/Untitled2-1.jpg 1613w, https://anonyviet.com/wp-content/uploads/2021/11/Untitled2-1-300x84.jpg 300w, https://anonyviet.com/wp-content/uploads/2021/11/Untitled2-1-1024x288.jpg 1024w, https://anonyviet.com/wp-content/uploads/2021/11/Untitled2-1-768x216.jpg 768w, https://anonyviet.com/wp-content/uploads/2021/11/Untitled2-1-1536x432.jpg 1536w, https://anonyviet.com/wp-content/uploads/2021/11/Untitled2-1-750x211.jpg 750w, https://anonyviet.com/wp-content/uploads/2021/11/Untitled2-1-1140x321.jpg 1140w" sizes="auto, (max-width: 1613px) 100vw, 1613px" title="Tool InstallerFileTakeOver Escalates Admin Privileges on Windows 10/11 12"/></p>
<p><strong>Note</strong>: This file will only exist until CVE-2021-41379 is patched.  If you haven&#8217;t tried it yet, what are you waiting for?</p>
<p><strong>You may be interested in:</strong> <a target="_blank" href="https://en.anonyviet.com/next-link?url=https%3A%2F%2Fanonyviet.com%2Fpoc-cve-2021-40444-dinh-kem-virus-vao-file-word%2F" rel="noopener" class="local-link">PoC CVE-2021-40444 – Attach Virus to Word File</a></p>
<div class="kk-star-ratings kksr-auto kksr-align-right kksr-valign-bottom" data-payload="{&quot;align&quot;:&quot;right&quot;,&quot;id&quot;:&quot;37365&quot;,&quot;slug&quot;:&quot;default&quot;,&quot;valign&quot;:&quot;bottom&quot;,&quot;ignore&quot;:&quot;&quot;,&quot;reference&quot;:&quot;auto&quot;,&quot;class&quot;:&quot;&quot;,&quot;count&quot;:&quot;100&quot;,&quot;legendonly&quot;:&quot;&quot;,&quot;readonly&quot;:&quot;&quot;,&quot;score&quot;:&quot;5&quot;,&quot;starsonly&quot;:&quot;&quot;,&quot;best&quot;:&quot;5&quot;,&quot;gap&quot;:&quot;5&quot;,&quot;greet&quot;:&quot;\u0110\u00e1nh gi\u00e1 b\u00e0i vi\u1ebft post&quot;,&quot;legend&quot;:&quot;B\u00e0i vi\u1ebft \u0111\u1ea1t: 5\/5 - (100 b\u00ecnh ch\u1ecdn)&quot;,&quot;size&quot;:&quot;24&quot;,&quot;width&quot;:&quot;142.5&quot;,&quot;_legend&quot;:&quot;B\u00e0i vi\u1ebft \u0111\u1ea1t: {score}\/{best} - ({count} {votes})&quot;,&quot;font_factor&quot;:&quot;1.25&quot;}">
<p>            The article achieved: 5/5 &#8211; (100 votes)    </p>
</p></div>
</div>
]]></content:encoded>
					
					<wfw:commentRss>https://en.anonyviet.com/tool-installerfiletakeover-escalates-admin-privileges-on-windows-10-11/feed/</wfw:commentRss>
			<slash:comments>0</slash:comments>
		
		
		<media:content url="https://anonyviet.com/wp-content/uploads/2021/11/h21-562x321-1.jpg" medium="image"></media:content>
            	</item>
	</channel>
</rss>
