A vulnerability in Windows drivers could allow full control of the system

Windows is one of the most widely used systems around the world, and as such, it is also one of the systems that receives the most attention from attackers, who pay large sums of money for flaws that may affect the system in some way. Recently, a researcher from VMware Carbon Black revealed that he had discovered an extensive list of security vulnerabilities that affect the system and the devices connected to it, especially through operating software.

says the researcher We discovered a total of 34 flaws, affecting system drivers, that could allow attackers to take full control of the operating system and its data. The defects affect drivers from companies such as Intel, AMD, Nvidia, Dell, and Phoenix Technologies.

There are flaws associated with outdated device drivers, which may still be present in the system, opening doors for potential malicious exploits. By exploiting the flaws, attackers can quickly take control of the system for a variety of purposes.

In one example, the researcher demonstrated how Windows Terminal can be used with a system user without administrative privileges, and by exploiting a flaw, it is possible to execute resources that would only be possible with administrator permissions. This even happens on Windows 11 systems with HVCI (Hypervisor Protected Code Integrity), which is supposed to provide additional protection against this type of attack.

It should be noted that errors are not found directly in the Windows operating system, but in the drivers present in the system and linked to different parties. They can be installed as part of hardware that the user owns or has used in the past, but with the contents remaining in the system installation.

These flaws have been reported to the companies involved, but so far only Phoenix Technologies and AMD have confirmed them, releasing their own patches.