This bug in Windows 10 allows executing a command

Single command

The important flaw, since the command used can easily be hidden in different types of files, even a compressed zip file. This case is especially sensitive, since for the attack to start we don't even have to open the file All we have to do is check the contents of the folder for the command to be start.

The user does not have to open the file. Just open the folder where the file is

This security breach can also be executed by any user with access to our computer, without being a requirement that they have administrator privilegesin Windows 10 or have any other privilege. Also, the file can be found inside any system folder.

Once it takes action, the operating system starts displaying messages indicating that disk data has been damaged and prompts a reboot to fix it. This leads to hard drive corruption and may lead to data loss.

When the disk becomes corrupted, Windows 10 generates errors in the Event Log saying that the Master File Table (MFT) contains a corrupted registry. In addition, the user does not need to have physical access, as the vulnerability can also be executed remotely if it is activated by any type of service that allows opening files with specific names.

Jonas L, the discoverer of the threat, explained on his Twitter account that this bug occurred with Windows 10 1803 (Windows 10 April 2018 Update) and is present today in the most recent version of the system. Meanwhile, since they claim to be investigating any reported security issues and will provide updates on compromised computers as soon as possible.

Via | BleepingComputer

Table of contents:

Single command

Editor's choice