Windows 10: Skype can't fix security bug without massive code rewrite

  1. Brink's Avatar
    Posts : 33,198
    64-bit Windows 10 Pro build 18262
       13 Feb 2018 #1

    Skype can't fix security bug without massive code rewrite


    A security flaw in Skype's updater process can allow an attacker to gain system-level privileges to a vulnerable computer.

    The bug, if exploited, can escalate a local unprivileged user to the full "system" level rights -- granting them access to every corner of the operating system.

    But Microsoft, which owns the voice- and video-calling service, said it won't immediately fix the flaw, because the bug would require too much work.

    Security researcher Stefan Kanthak found that the Skype update installer could be exploited with a DLL hijacking technique, which allows an attacker to trick an application into drawing malicious code instead of the correct library. An attacker can download a malicious DLL into a user-accessible temporary folder and rename it to an existing DLL that can be modified by an unprivileged user, like UXTheme.dll. The bug works because the malicious DLL is found first when the app searches for the DLL it needs.

    Once installed, Skype uses its own built-in updater to keep the software up to date. When that updater runs, it uses another executable file to run the update, which is vulnerable to the hijacking.

    The attack reads on the clunky side, but Kanthak told ZDNet in an email that the attack could be easily weaponized. He explained, providing two command line examples, how a script or malware could remotely transfer a malicious DLL into that temporary folder.

    "Windows provides multiple ways to do it," he said. But DLL hijacking isn't limited to Windows, he said -- noting that it can apply to Macs and Linux, too...


    Read more: Skype can't fix a nasty security bug without a massive code rewrite | ZDNet
      My ComputersSystem Spec

  2. ThrashZone's Avatar
    Posts : 3,882
    3-Win-7Prox64 2-Win10Prox64
       13 Feb 2018 #1

    Hi,
    Too much trouble to fix :/
      My ComputersSystem Spec

  3.    13 Feb 2018 #2

    ThrashZone said: View Post
    Hi,
    Too much trouble to fix :/
    Then MS should remove it.
      My ComputerSystem Spec

  4. ThrashZone's Avatar
    Posts : 3,882
    3-Win-7Prox64 2-Win10Prox64
       13 Feb 2018 #3

    Hi,
    Too much of a money maker to remove it and too much work to fix it :)
      My ComputersSystem Spec

  5. Cliff S's Avatar
    Posts : 21,739
    Win10 Pro, Win10 Pro N, Win10 Home, Win10 Pro Insider Fast Ring, Windows 8.1 Pro, Ubuntu
       13 Feb 2018 #4

    System32---.dll?
    Must be the desktop version and not the UWP app then, or?
      My ComputersSystem Spec

  6. ThrashZone's Avatar
    Posts : 3,882
    3-Win-7Prox64 2-Win10Prox64
       13 Feb 2018 #5

    Hi,
    Aren't all cell phones 32 bit and surface versions ?
      My ComputersSystem Spec


 

Related Threads
Hi all, This may seem like an odd question, but I'll explain what I mean. I always try to reply to my friends on Skype, but sometimes I don't have time to write well-thought out reply so I check Skype for messages from my contacts and then...
BSOD Code kernel security check fail in BSOD Crashes and Debugging
hi i have some question this morning i have update this and everything just fine 2 Hours later my comeputer is BSOD Code kernel security check fail is never happan befor so i Factory Reset my windows and then i test my pc with 3DBenchmark about 1...
Source: CVE-2017-8584 | HoloLens Remote Code Execution Vulnerability - Microsoft Security TechCenter
Me too! I posted on Windows Insider Answers site at: nuvision tablet GSOD on restart during installation of 15007 - Microsoft Community Download and installation of 15007 rs_prerelease seems to work well. Press the RESTART BUTTON that the...
Solved Kernal Security Check bluescreen, no code. in BSOD Crashes and Debugging
Hi there! I randomly received a "Kernal Security Check," with no code associated with it. I'm thinking it could be this Corsair K70 RGB I just installed. If it is, I'm just going to send this thing back. I know people have had tons of problems...
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 16:02.
Find Us