New problem for millions of Windows 7, Windows 8.1 and Windows 10 users
Microsoft recently confirmed new wormable vulnerabilities across every major version of Windows and now there’s a new problem for millions of Windows 7, Windows 8.1 and Windows 10 users.
a new Steam Windows client zero-day privilege escalation vulnerability has been published by Russian researcher Vasily Kravets just weeks after he discovered a similar earlier hack.
Steam having over 100 million registered users and 96.28% of them are running Windows according to the Steam Hardware & Software Survey: July 2019, the systems of roughly 96 million of them are currently affected,” explains BleepingComputer. And Windows 10 accounts for over 71% of them.
The vulnerability allows attackers to elevate their permissions on a target computer using a technique known as BaitAndSwitch through the Steam client.
Achieving maximum privileges can lead to much more disastrous consequences
For example, disabling firewall and antivirus, rootkit installation, concealing of process-miner, theft any PC user’s private data – is just a small portion of what could be done.” He also illustrates this in video below.
As for a fix, ه some fixes had put into its beta channel but the vast majority of users are outside this and still waiting for a full fix.