UAC bypass in computerdefaults.exe using protocol hijacking
lafwaN opened this issue · 2 comments
lafwaN commented
Hi,
I made a repo showcasing a UAC bypass over here: https://github.com/lafwaN/mychoppa
It works on Windows 10 LTSC 1809, it should also hopefully work on some other versions though. I would like you to take a look at it.
Thanks,
Nawfal
hfiref0x commented
Hello,
it is the same as method 67 but with computerdefaults.exe as target. Fodhelper/ComputerDefaults pair ms-settings hijacking is known for years and since this repo already has 3 methods (2 for hijacking ms-settings registry entries for FodHelper/ComputerDefaults) and 1 for hijacking ms-settings protocol for FodHelper) there is no need in another one.
lafwaN commented
That is understandable. Thank you for reviewing my issue.