Unpatched Windows Bug Allows Attackers to Spoof Security Dialog Boxes

March 12, 2019


Microsoft won’t be patching the bug, but a proof of concept shows the potential for successful malware implantation.

A previously unknown bug in Microsoft Windows would allow an attacker to spoof Windows dialog boxes that surface when making changes to the Windows registry. This would allow an adversary to plant malware or make other nefarious changes in the registry while getting around Windows’ built-in defenses, according to a researcher.

Normally when there is a change to the registry using a .reg file, a registry security warning dialog box will open, with an “are you sure you want to continue?” message and the option to click either “Yes” or “No.

Read More on Threat Post