Windows 10 Systems Prone To ‘Full Compromise’ Due To Nasty Huawei Driver

Third party kernel drivers are frequently a cerebral pain for the purchaser gadgets merchants as the unlimited authority on the honesty of the system can't be guaranteed. The equivalent applies to Microsoft and its Windows 10 operating system.

In an official blog entry, Microsoft has illustrated an enormous security defect present in a gadget the board driver created by China-based tech goliath Huawei. The blemish has just been fixed however it's imperative to feature how it permitted nearby benefit acceleration of an enormous scale.

Microsoft was able to spot the flaw in Huawei’s MateBook line of laptops with the help of its new kernel sensors that were implemented in the OS as a part of Windows 10 October 2018 Update; it’s also called Windows 10 Version 1809.

These sensors were chiefly put in place to prevent NSA-created backdoors like DOUBLEPULSAR, which was also exploited by  WannaCry ransomware. The company found that Huawei’s PC Manager allowed an attacker to develop a notorious instance of MateBookService.exe and gain escalated privileges.

Moreover, the driver also allowed a low privilege code to gain read-write permissions and even modify kernel as well, resulting in complete compromise. While the first flaw was CVE-2019-5241, this second instance was assigned CVE-2019-5242.

You can know more about how Redmond reverse-engineered Huawei’s driver and unearthed this privilege escalation flaw.