A security researcher under the alias Jonhat has discovered an incredibly easy to exploit vulnerability that allows you to gain admin / system privileges on your Windows 10 PC. All you have to do is buy a commercial Razer mouse (cost: from 30 euros) and connect it with USB cable. The operating system will automatically download the installer, which has a good idea of running with administrator/system privileges, as noted by Bleeping Computer.
On one of the screens, the program allows changing the installation location. Clicking this option will open File Explorer. All you have to do is hold Shift, right-click and select “Open PowerShell window here” from the context menu. And presto, we have full access permission to the system, and therefore in particular to the data of other users of the device.
Do you need a local admin and have physical access?
Connect a Razer mouse (or dongle)
– Windows Update will download and run RazerInstaller as system
– Abuse Elevated Explorer to open Powershell with Shift + Right ClickI tried to call Tweet embed, but there are no answers. So here’s the freebie pic.twitter.com/xDkl87RCmz
– Jonhat (@j0nh4t) August 21, 2021
After alerting Jonhat, Razer did not react immediately. But the story quickly escalated on Twitter, and the seller indicated he would produce a fix ASAP. In the meantime, don’t let anyone connect your PC with a Razer Mouse! In business, the risks are lower, because downloading and running installers is generally prohibited by default.
Source : sleeping computer