Security Researcher, Gynvael Coldwind , has discovered a USB Vulnerability that results in Local privilege escalation on Windows 7. Another Security researcher Mateusz “j00ru” Jurczyk , has developed exploit for this security flaw.
The security hole requires the attacker to obtain physical access to the machine and have a local user in the system.
Consequently, the only scenario in which it might be a problem security-wise is a local computer shared between multiple users with restricted privileges (e.g. schools, universities, hostels) and thus has been rated as low-severity.
Researchers sent notification about the vulnerability to MSRC, they claimed to have passed the information to the Windows team for potential fixing as a stability issue somewhere in the future.
The security hole requires the attacker to obtain physical access to the machine and have a local user in the system.
Consequently, the only scenario in which it might be a problem security-wise is a local computer shared between multiple users with restricted privileges (e.g. schools, universities, hostels) and thus has been rated as low-severity.
Researchers sent notification about the vulnerability to MSRC, they claimed to have passed the information to the Windows team for potential fixing as a stability issue somewhere in the future.
Windows 7 USB stick local+physical attack demo :
The Technical details about the vulnerability can be found here:
http://j00ru.vexillium.org/?p=1272
