vendor:
Windows 10
by:
Fabien DROMAS
7.2
CVSS
HIGH
UAC Bypass
N/A
CWE
Product Name: Windows 10
Affected Version From: Windows 10 pro Version 10.0.17134.285
Affected Version To: Windows 10 pro Version 10.0.17134.285
Patch Exists: NO
Related CWE: N/A
CPE: o:microsoft:windows_10::-:pro
Metasploit:
N/A
Other Scripts:
N/A
Platforms Tested: Windows
2018
Windows 10 UAC Bypass by computerDefault
This exploit uses the ComputerDefaults.exe binary to bypass UAC on Windows 10. It creates a registry key in the HKEY_CURRENT_USER hive and sets the DelegateExecute value to an empty string. It then sets the (Default) value to cmd.exe, which is then executed by ComputerDefaults.exe with elevated privileges.
Mitigation:
Ensure that UAC is enabled and set to the highest level.